ET EXPLOIT Microsoft Exchange - Successful msExchEcpCanary Disclosure (CVE-2021-33766)

7.0.35.0SID: 2033835Rev: 4Enabled3 views
Sourceet/open
Fileemerging-exploit.rules
CreatedAugust 30, 2021
UpdatedMarch 14, 2024
Classificationattempted-admin
alert http [$HOME_NET,$HTTP_SERVERS] any -> any any (msg:"ET EXPLOIT Microsoft Exchange - Successful msExchEcpCanary Disclosure (CVE-2021-33766)"; flow:established,to_client; flowbits:isset,ET.proxytoken; flowbits:unset,ET.proxytoken; http.stat_code; content:"500"; http.cookie; content:"msExchEcpCanary="; fast_pattern; xbits:set,ET.proxytoken.500,track ip_src,expire 30; reference:cve,2021-33766; classtype:attempted-admin; sid:2033835; rev:4; metadata:created_at 2021_08_30, cve CVE_2021_33766, confidence High, signature_severity Major, tag CISA_KEV, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2024_03_14;)

References

Metadata

created at2021_08_30
confidenceHigh
signature severityMajor
tagDescription_Generated_By_Proofpoint_Nexus
updated at2024_03_14

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!