ET EXPLOIT HP Smart Storage Administrator Remote Command Injection
Sourceet/open
Fileemerging-exploit.rules
CreatedMarch 15, 2017
UpdatedMarch 7, 2024
Classificationattempted-user
alert tcp $EXTERNAL_NET any -> $HOME_NET 2381 (msg:"ET EXPLOIT HP Smart Storage Administrator Remote Command Injection"; flow:established,to_server ; content:"echo -n|20|"; pcre:"/^\s*(?:f0VMR|9FTE|\/RUxG)/R" ; reference:cve,2016-8523 ; classtype:attempted-user; sid:2024063; rev:3; metadata:affected_product HP_Smart_Storage_Administrator, attack_target Server, created_at 2017_03_15, cve CVE_2016_8523, deployment Datacenter, performance_impact Low, confidence High, signature_severity Critical, updated_at 2024_03_07, mitre_tactic_id TA0008, mitre_tactic_name Lateral_Movement, mitre_technique_id T1210, mitre_technique_name Exploitation_Of_Remote_Services;)
References
| cve | 2016-8523 |
Metadata
affected productHP_Smart_Storage_Administrator
attack targetServer
created at2017_03_15
deploymentDatacenter
performance impactLow
confidenceHigh
signature severityCritical
updated at2024_03_07
mitre tactic idTA0008
mitre tactic nameLateral_Movement
mitre technique idT1210
mitre technique nameExploitation_Of_Remote_Services
Comments (0)
Please sign in to leave a comment.
Sign inNo comments yet. Be the first to comment!