GPL FTP LIST directory traversal attempt

7.0.35.0SID: 2101992Rev: 12Enabled1 views
Sourceet/open
Fileemerging-ftp.rules
CreatedSeptember 23, 2010
UpdatedNovember 26, 2024
Classificationprotocol-command-decode
alert ftp $EXTERNAL_NET any -> $HOME_NET any (msg:"GPL FTP LIST directory traversal attempt"; flow:established,to_server; content:"LIST"; nocase; content:".."; distance:1; content:".."; distance:1; reference:cve,2002-1054; reference:bugtraq,2618; reference:nessus,11112; reference:cve,2001-0680; classtype:protocol-command-decode; sid:2101992; rev:12; metadata:created_at 2010_09_23, cve CVE_2001_0680, deployment Perimeter, deployment Internal, confidence High, signature_severity Major, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2024_11_26, mitre_tactic_id TA0007, mitre_tactic_name Discovery, mitre_technique_id T1083, mitre_technique_name File_And_Directory_Discovery; target:dest_ip;)

References

cve2002-1054
bugtraq2618
nessus11112
cve2001-0680

Metadata

created at2010_09_23
deploymentInternal
confidenceHigh
signature severityMajor
tagDescription_Generated_By_Proofpoint_Nexus
updated at2024_11_26
mitre tactic idTA0007
mitre tactic nameDiscovery
mitre technique idT1083
mitre technique nameFile_And_Directory_Discovery

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!