GPL P2P eMule buffer overflow attempt
Sourceet/open
Fileemerging-p2p.rules
CreatedSeptember 23, 2010
UpdatedMarch 8, 2024
Classificationattempted-user
alert tcp $EXTERNAL_NET 6666:6669 -> $HOME_NET any (msg:"GPL P2P eMule buffer overflow attempt"; flow:established,to_client ; content:"PRIVMSG"; nocase; content:"|01|SENDLINK|7c|"; distance:0; pcre:"/^PRIVMSG\s+[^\s]+\s+\x3a\s*\x01SENDLINK\x7c[^\x7c]{69}/smi"; reference:bugtraq,10039 ; reference:nessus,12233 ; classtype:attempted-user; sid:2102584; rev:6; metadata:created_at 2010_09_23, confidence High, signature_severity Major, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2024_03_08;)
Metadata
created at2010_09_23
confidenceHigh
signature severityMajor
tagDescription_Generated_By_Proofpoint_Nexus
updated at2024_03_08
Comments (0)
Please sign in to leave a comment.
Sign inNo comments yet. Be the first to comment!