ET EXPLOIT HP Enterprise VAN SDN Controller Upload Backdoor
Sourceet/open
Fileemerging-exploit.rules
CreatedJune 28, 2018
UpdatedApril 21, 2024
Classificationattempted-user
alert http $EXTERNAL_NET any -> $HOME_NET any (msg:"ET EXPLOIT HP Enterprise VAN SDN Controller Upload Backdoor"; flow:established,to_server ; http.uri; content:"/upload"; endswith; http.request_header; header_lowercase; content:"x-auth-token|3a 20|AuroraSdnToken"; startswith; http.request_body; content:"!<arch>|0a|debian-binary"; fast_pattern; reference:url,exploit-db.com/exploits/44951/ ; classtype:attempted-user; sid:2025763; rev:5; metadata:attack_target Networking_Equipment, created_at 2018_06_28, deployment Datacenter, signature_severity Major, updated_at 2024_04_21;)
References
Metadata
attack targetNetworking_Equipment
created at2018_06_28
deploymentDatacenter
signature severityMajor
updated at2024_04_21
Comments (0)
Please sign in to leave a comment.
Sign inNo comments yet. Be the first to comment!