ET EXPLOIT Possible Zend Framework Exploit (CVE-2021-3007)

7.0.35.0SID: 2031536Rev: 2Enabled0 views
Sourceet/open
Fileemerging-exploit.rules
CreatedJanuary 22, 2021
UpdatedMarch 25, 2024
Classificationattempted-admin
alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"ET EXPLOIT Possible Zend Framework Exploit (CVE-2021-3007)"; flow:established,to_server; http.method; content:"POST"; http.uri; bsize:14; content:"/zend3/public/"; fast_pattern; http.request_body; content:"zend"; nocase; content:"validator"; nocase; distance:0; content:"callback"; nocase; distance:0; content:"file_put_contents"; nocase; reference:url,research.checkpoint.com/2021/freakout-leveraging-newest-vulnerabilities-for-creating-a-botnet/; reference:cve,2021-3007; classtype:attempted-admin; sid:2031536; rev:2; metadata:created_at 2021_01_22, cve CVE_2021_3007, confidence Medium, signature_severity Major, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2024_03_25;)

Metadata

created at2021_01_22
confidenceMedium
signature severityMajor
tagDescription_Generated_By_Proofpoint_Nexus
updated at2024_03_25

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!