GPL WEB_CLIENT libpng tRNS overflow attempt

7.0.35.0SID: 2102673Rev: 8Disabled2 views
Sourceet/open
Fileemerging-web_client.rules
CreatedSeptember 23, 2010
UpdatedApril 3, 2024
Classificationattempted-user
alert http $EXTERNAL_NET any -> $HOME_NET any (msg:"GPL WEB_CLIENT libpng tRNS overflow attempt"; flow:established,to_client; file.data; content:"|89|PNG|0D 0A 1A 0A|"; fast_pattern; content:"IHDR"; within:4; distance:4; content:"tRNS"; distance:0; byte_test:4,>,256,-8,relative,big; pcre:"/IHDR(?!.*?PLTE).*?tRNS/s"; reference:bugtraq,10872; reference:cve,2004-0597; classtype:attempted-user; sid:2102673; rev:8; metadata:affected_product Web_Browsers, affected_product Web_Browser_Plugins, attack_target Client_Endpoint, created_at 2010_09_23, deployment Perimeter, confidence Medium, signature_severity Major, tag Web_Client_Attacks, updated_at 2024_04_03;)

References

bugtraq10872
cve2004-0597

Metadata

affected productWeb_Browser_Plugins
attack targetClient_Endpoint
created at2010_09_23
deploymentPerimeter
confidenceMedium
signature severityMajor
tagWeb_Client_Attacks
updated at2024_04_03

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!