Update Details
Update #2991 (09/21/2017)
82 new signatures:
| MEDIUM | HTTP:MAL-REDIRECT-VUL-61 | HTTP: MAL-REDIRECT Infection-61 |
| MEDIUM | HTTP:SUSP-HDR-REDRCT-VUL-62 | HTTP: SUSP-HDR-REDRCT Infection-62 |
| MEDIUM | HTTP:SCRIPT-INJ-VUL-63 | HTTP: SCRIPT-INJ Infection-63 |
| MEDIUM | HTTP:MAL-REDIRECT-VUL-64 | HTTP: MAL-REDIRECT Infection-64 |
| MEDIUM | HTTP:SUSP-HDR-REDRCT-VUL-65 | HTTP: SUSP-HDR-REDRCT Infection-65 |
| MEDIUM | HTTP:SCRIPT-INJ-VUL-66 | HTTP: SCRIPT-INJ Infection-66 |
| MEDIUM | HTTP:MAL-REDIRECT-VUL-67 | HTTP: MAL-REDIRECT Infection-67 |
| MEDIUM | HTTP:SUSP-HDR-REDRCT-VUL-68 | HTTP: SUSP-HDR-REDRCT Infection-68 |
| MEDIUM | HTTP:SCRIPT-INJ-VUL-69 | HTTP: SCRIPT-INJ Infection-69 |
| MEDIUM | HTTP:MAL-REDIRECT-VUL-70 | HTTP: MAL-REDIRECT Infection-70 |
| MEDIUM | HTTP:SUSP-HDR-REDRCT-VUL-71 | HTTP: SUSP-HDR-REDRCT Infection-71 |
| MEDIUM | HTTP:SCRIPT-INJ-VUL-72 | HTTP: SCRIPT-INJ Infection-72 |
| MEDIUM | HTTP:MAL-REDIRECT-VUL-73 | HTTP: MAL-REDIRECT Infection-73 |
| MEDIUM | HTTP:SUSP-HDR-REDRCT-VUL-74 | HTTP: SUSP-HDR-REDRCT Infection-74 |
| MEDIUM | HTTP:SCRIPT-INJ-VUL-75 | HTTP: SCRIPT-INJ Infection-75 |
| MEDIUM | HTTP:MAL-REDIRECT-VUL-76 | HTTP: MAL-REDIRECT Infection-76 |
| MEDIUM | HTTP:SUSP-HDR-REDRCT-VUL-77 | HTTP: SUSP-HDR-REDRCT Infection-77 |
| HIGH | HTTP:STC:HPE-LANG-INJ | HTTP: HPE Intelligent Management Center saveSelectedDevices Expression Language Injection |
| HIGH | HTTP:TM-ISMS-RCE | HTTP: Trend Micro InterScan Messaging Security Remote Code Execution |
| HIGH | HTTP:STC:DL:MS-CVE-2017-8728-BO | HTTP: Microsoft Windows PDF Library Heap-based Buffer Overflow |
| HIGH | APP:MISC:RACER-BO | APP: Racer Remote Buffer Overflow |
| MEDIUM | HTTP:SCRIPT-INJ-VUL-0 | HTTP: SCRIPT-INJ Infection-0 |
| MEDIUM | HTTP:MAL-REDIRECT-VUL-1 | HTTP: MAL-REDIRECT Infection-1 |
| MEDIUM | HTTP:SUSP-HDR-REDRCT-VUL-2 | HTTP: SUSP-HDR-REDRCT Infection-2 |
| MEDIUM | HTTP:SCRIPT-INJ-VUL-3 | HTTP: SCRIPT-INJ Infection-3 |
| MEDIUM | HTTP:MAL-REDIRECT-VUL-4 | HTTP: MAL-REDIRECT Infection-4 |
| MEDIUM | HTTP:SUSP-HDR-REDRCT-VUL-5 | HTTP: SUSP-HDR-REDRCT Infection-5 |
| MEDIUM | HTTP:SCRIPT-INJ-VUL-6 | HTTP: SCRIPT-INJ Infection-6 |
| MEDIUM | HTTP:MAL-REDIRECT-VUL-7 | HTTP: MAL-REDIRECT Infection-7 |
| MEDIUM | HTTP:SUSP-HDR-REDRCT-VUL-8 | HTTP: SUSP-HDR-REDRCT Infection-8 |
| MEDIUM | HTTP:SCRIPT-INJ-VUL-9 | HTTP: SCRIPT-INJ Infection-9 |
| MEDIUM | HTTP:MAL-REDIRECT-VUL-10 | HTTP: MAL-REDIRECT Infection-10 |
| MEDIUM | HTTP:SUSP-HDR-REDRCT-VUL-11 | HTTP: SUSP-HDR-REDRCT Infection-11 |
| MEDIUM | HTTP:SCRIPT-INJ-VUL-12 | HTTP: SCRIPT-INJ Infection-12 |
| MEDIUM | HTTP:MAL-REDIRECT-VUL-13 | HTTP: MAL-REDIRECT Infection-13 |
| MEDIUM | HTTP:SUSP-HDR-REDRCT-VUL-14 | HTTP: SUSP-HDR-REDRCT Infection-14 |
| MEDIUM | HTTP:SCRIPT-INJ-VUL-15 | HTTP: SCRIPT-INJ Infection-15 |
| MEDIUM | HTTP:MAL-REDIRECT-VUL-16 | HTTP: MAL-REDIRECT Infection-16 |
| MEDIUM | HTTP:SUSP-HDR-REDRCT-VUL-17 | HTTP: SUSP-HDR-REDRCT Infection-17 |
| MEDIUM | HTTP:SCRIPT-INJ-VUL-18 | HTTP: SCRIPT-INJ Infection-18 |
| MEDIUM | HTTP:MAL-REDIRECT-VUL-19 | HTTP: MAL-REDIRECT Infection-19 |
| MEDIUM | HTTP:SUSP-HDR-REDRCT-VUL-20 | HTTP: SUSP-HDR-REDRCT Infection-20 |
| MEDIUM | HTTP:SCRIPT-INJ-VUL-21 | HTTP: SCRIPT-INJ Infection-21 |
| MEDIUM | HTTP:MAL-REDIRECT-VUL-22 | HTTP: MAL-REDIRECT Infection-22 |
| MEDIUM | HTTP:SUSP-HDR-REDRCT-VUL-23 | HTTP: SUSP-HDR-REDRCT Infection-23 |
| MEDIUM | HTTP:SCRIPT-INJ-VUL-24 | HTTP: SCRIPT-INJ Infection-24 |
| MEDIUM | HTTP:MAL-REDIRECT-VUL-25 | HTTP: MAL-REDIRECT Infection-25 |
| MEDIUM | HTTP:SUSP-HDR-REDRCT-VUL-26 | HTTP: SUSP-HDR-REDRCT Infection-26 |
| MEDIUM | HTTP:SCRIPT-INJ-VUL-27 | HTTP: SCRIPT-INJ Infection-27 |
| MEDIUM | HTTP:MAL-REDIRECT-VUL-28 | HTTP: MAL-REDIRECT Infection-28 |
| MEDIUM | HTTP:SUSP-HDR-REDRCT-VUL-29 | HTTP: SUSP-HDR-REDRCT Infection-29 |
| MEDIUM | HTTP:SCRIPT-INJ-VUL-30 | HTTP: SCRIPT-INJ Infection-30 |
| MEDIUM | HTTP:MAL-REDIRECT-VUL-31 | HTTP: MAL-REDIRECT Infection-31 |
| MEDIUM | HTTP:SUSP-HDR-REDRCT-VUL-32 | HTTP: SUSP-HDR-REDRCT Infection-32 |
| MEDIUM | HTTP:SCRIPT-INJ-VUL-33 | HTTP: SCRIPT-INJ Infection-33 |
| MEDIUM | HTTP:MAL-REDIRECT-VUL-34 | HTTP: MAL-REDIRECT Infection-34 |
| MEDIUM | HTTP:SUSP-HDR-REDRCT-VUL-35 | HTTP: SUSP-HDR-REDRCT Infection-35 |
| MEDIUM | HTTP:SCRIPT-INJ-VUL-36 | HTTP: SCRIPT-INJ Infection-36 |
| MEDIUM | HTTP:MAL-REDIRECT-VUL-37 | HTTP: MAL-REDIRECT Infection-37 |
| MEDIUM | HTTP:SUSP-HDR-REDRCT-VUL-38 | HTTP: SUSP-HDR-REDRCT Infection-38 |
| MEDIUM | HTTP:SCRIPT-INJ-VUL-39 | HTTP: SCRIPT-INJ Infection-39 |
| MEDIUM | HTTP:MAL-REDIRECT-VUL-40 | HTTP: MAL-REDIRECT Infection-40 |
| MEDIUM | HTTP:SUSP-HDR-REDRCT-VUL-41 | HTTP: SUSP-HDR-REDRCT Infection-41 |
| MEDIUM | HTTP:SCRIPT-INJ-VUL-42 | HTTP: SCRIPT-INJ Infection-42 |
| MEDIUM | HTTP:MAL-REDIRECT-VUL-43 | HTTP: MAL-REDIRECT Infection-43 |
| MEDIUM | HTTP:SUSP-HDR-REDRCT-VUL-44 | HTTP: SUSP-HDR-REDRCT Infection-44 |
| MEDIUM | HTTP:SCRIPT-INJ-VUL-45 | HTTP: SCRIPT-INJ Infection-45 |
| MEDIUM | HTTP:MAL-REDIRECT-VUL-46 | HTTP: MAL-REDIRECT Infection-46 |
| MEDIUM | HTTP:SUSP-HDR-REDRCT-VUL-47 | HTTP: SUSP-HDR-REDRCT Infection-47 |
| MEDIUM | HTTP:SCRIPT-INJ-VUL-48 | HTTP: SCRIPT-INJ Infection-48 |
| MEDIUM | HTTP:MAL-REDIRECT-VUL-49 | HTTP: MAL-REDIRECT Infection-49 |
| MEDIUM | HTTP:SUSP-HDR-REDRCT-VUL-50 | HTTP: SUSP-HDR-REDRCT Infection-50 |
| MEDIUM | HTTP:SCRIPT-INJ-VUL-51 | HTTP: SCRIPT-INJ Infection-51 |
| MEDIUM | HTTP:MAL-REDIRECT-VUL-52 | HTTP: MAL-REDIRECT Infection-52 |
| MEDIUM | HTTP:SUSP-HDR-REDRCT-VUL-53 | HTTP: SUSP-HDR-REDRCT Infection-53 |
| MEDIUM | HTTP:SCRIPT-INJ-VUL-54 | HTTP: SCRIPT-INJ Infection-54 |
| MEDIUM | HTTP:MAL-REDIRECT-VUL-55 | HTTP: MAL-REDIRECT Infection-55 |
| MEDIUM | HTTP:SUSP-HDR-REDRCT-VUL-56 | HTTP: SUSP-HDR-REDRCT Infection-56 |
| MEDIUM | HTTP:SCRIPT-INJ-VUL-57 | HTTP: SCRIPT-INJ Infection-57 |
| MEDIUM | HTTP:MAL-REDIRECT-VUL-58 | HTTP: MAL-REDIRECT Infection-58 |
| MEDIUM | HTTP:SUSP-HDR-REDRCT-VUL-59 | HTTP: SUSP-HDR-REDRCT Infection-59 |
| MEDIUM | HTTP:SCRIPT-INJ-VUL-60 | HTTP: SCRIPT-INJ Infection-60 |
2 updated signatures:
| HIGH | HTTP:STC:ADOBE:ACROBAT-GETICON | HTTP: Adobe Acrobat JavaScript getIcon Method Buffer Overflow |
| HIGH | HTTP:STC:ADVANTECH-WEBACCESS | HTTP: Advantech WebAccess Dashboard uploadFile Arbitrary File Upload |
Details of the signatures included within this bulletin:
HTTP:STC:ADOBE:ACROBAT-GETICON - HTTP: Adobe Acrobat JavaScript getIcon Method Buffer Overflow
Severity: HIGH
Description:
This signature detects attempts to exploit a known vulnerability in the Adobe Acrobat. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the Server.
Supported On:
isg-3.5.141652, idp-5.1.110161014, idp-4.0.0, idp-4.0.110090709, idp-4.0.110090831, idp-4.1.0, mx-16.1, idp-4.2.0, srx-17.3, vmx-17.4, idp-5.0.0, isg-3.1.134269, isg-3.1.135801, isg-3.4.0, isg-3.5.0, j-series-9.5, idp-4.2.110100823, idp-4.2.110101203, idp-5.1.0, idp-4.1.110110609, idp-4.1.110110719, mx-11.4, isg-3.4.139899, idp-5.0.110121210, srx-12.1, srx-branch-12.1, isg-3.4.140032, idp-5.0.110130325, vsrx-12.1, vsrx-15.1, isg-3.5.141597, idp-5.1.110160603
References:
- cve: CVE-2009-0927
- bugtraq: 34169
Affected Products:
- Adobe Acrobat Professional 7.0.7
- Adobe Reader 7.0.3
- Adobe Reader 7.0.4
- Adobe Reader 7.0.5
- Adobe Reader 7.0.6
- Adobe Reader 7.0.7
- Sun Solaris 10 Sparc
- Adobe Acrobat Professional 7.0.0
- SuSE SUSE Linux Enterprise Desktop 10 SP2
- SuSE openSUSE 11.0
- Nortel Networks Self-Service Peri Workstation
- Adobe Reader 8.1.2 Security Update 1
- Adobe Acrobat Professional 8.1.2 Security Update 1
- Adobe Acrobat Professional 7.0.9
- SuSE Linux Desktop 10
- Nortel Networks Self-Service MPS 1000
- Adobe Acrobat Professional 7.0.5
- SuSE SUSE Linux Enterprise Desktop 11
- Nortel Networks Self-Service Peri Application
- Adobe Reader 8.1
- Adobe Acrobat Professional 8.1
- Adobe Acrobat Standard 8.1
- Adobe Reader 7.0.9
- Gentoo Linux
- Adobe Acrobat Professional 7.1
- Adobe Reader 7.1
- Adobe Acrobat Standard 7.1
- SuSE Novell Linux Desktop 9.0.0
- SuSE openSUSE 10.3
- Adobe Acrobat Standard 8.1.1
- Adobe Acrobat Standard 8.1.2
- Adobe Acrobat Professional 8.1.2
- Adobe Reader 9
- Adobe Acrobat Standard 9
- Adobe Acrobat Professional 7.0.4
- Adobe Reader 8.0
- Adobe Acrobat Professional 8.0
- Adobe Acrobat Standard 8.0
- Adobe Acrobat Professional 9
- SuSE openSUSE 11.1
- Nortel Networks Self-Service - CCSS7
- Adobe Reader 7.0.0
- Adobe Reader 7.0.1
- Adobe Acrobat Standard 7.0.0
- Adobe Acrobat Standard 7.0.1
- Adobe Acrobat Standard 7.0.2
- Adobe Acrobat Standard 7.0.3
- Adobe Acrobat Standard 7.0.4
- Adobe Acrobat Standard 7.0.5
- Adobe Acrobat Standard 7.0.8
- Adobe Acrobat Standard 7.0.6
- Adobe Acrobat Standard 7.0.7
- Adobe Reader 7.0.2
- Adobe Acrobat Professional 7.0.1
- Adobe Acrobat Professional 7.0.2
- Adobe Acrobat Professional 7.0.3
- Adobe Reader 8.1.1
- Adobe Acrobat Professional 8.1.1
- Adobe Reader 7.0.8
- Adobe Acrobat Professional 7.0.6
- Adobe Reader 8.1.2
- Adobe Acrobat Professional 7.0.8
HTTP:STC:HPE-LANG-INJ - HTTP: HPE Intelligent Management Center saveSelectedDevices Expression Language Injection
Severity: HIGH
Description:
This signature detects attempts to exploit a known vulnerability in HPE Intelligent Management Center. A remote, authenticated attacker can exploit this vulnerability by sending a crafted request to the target server. Successful exploitation results in the execution of arbitrary code under the security context of the SYSTEM user.
Supported On:
isg-3.5.141652, idp-5.1.110161014, idp-4.0.0, idp-4.0.110090709, idp-4.0.110090831, idp-4.1.0, mx-16.1, idp-4.2.0, srx-17.3, vmx-17.4, idp-5.0.0, isg-3.1.134269, isg-3.1.135801, isg-3.4.0, isg-3.5.0, j-series-9.5, idp-4.2.110100823, idp-4.2.110101203, idp-5.1.0, idp-4.1.110110609, idp-4.1.110110719, mx-11.4, isg-3.4.139899, idp-5.0.110121210, srx-12.1, srx-branch-12.1, isg-3.4.140032, idp-5.0.110130325, vsrx-12.1, vsrx-15.1, isg-3.5.141597, idp-5.1.110160603
References:
- cve: CVE-2017-12490
- url: https://h20564.www2.hpe.com/hpsc/doc/public/display?docid=emr_na-hpesbhf03768en_us
- cve: CVE-2017-12491
- url: http://www.zerodayinitiative.com/advisories/zdi-17-655/
HTTP:TM-ISMS-RCE - HTTP: Trend Micro InterScan Messaging Security Remote Code Execution
Severity: HIGH
Description:
This signature detects attempts to exploit a known vulnerability in Trend Micro InterScan Messaging Security. An attacker can exploit this issue to execute arbitrary code within the context of the application.
Supported On:
isg-3.5.141652, idp-5.1.110161014, idp-4.0.0, idp-4.0.110090709, idp-4.0.110090831, idp-4.1.0, mx-16.1, idp-4.2.0, srx-17.3, vmx-17.4, idp-5.0.0, isg-3.0.0, isg-3.1.134269, isg-3.1.135801, isg-3.4.0, isg-3.5.0, j-series-9.5, idp-4.2.110100823, idp-4.2.110101203, idp-5.1.0, idp-4.1.110110609, idp-4.1.110110719, mx-11.4, isg-3.4.139899, idp-5.0.110121210, srx-12.1, srx-branch-12.1, isg-3.4.140032, idp-5.0.110130325, vsrx-12.1, vsrx-15.1, isg-3.5.141597, idp-5.1.110160603
References:
- bugtraq: 96859
- cve: CVE-2017-6398
Affected Products:
- trendmicro interscan_messaging_security_virtual_appliance 9.1-1600
HTTP:STC:DL:MS-CVE-2017-8728-BO - HTTP: Microsoft Windows PDF Library Heap-based Buffer Overflow
Severity: HIGH
Description:
This signature detects attempts to exploit a known vulnerability in Microsoft Windows PDF library. Successful exploitation could allow the attacker to execute arbitrary code under the security context of the target user.
Supported On:
srx-branch-12.1, isg-3.5.141652, mx-11.4, idp-5.1.110161014, idp-4.1.0, mx-16.1, vsrx-12.1, srx-17.3, vmx-17.4, vsrx-15.1, idp-5.1.110160603, j-series-9.5, isg-3.5.141597, srx-12.1
References:
- cve: CVE-2017-8728
- bugtraq: 100739
APP:MISC:RACER-BO - APP: Racer Remote Buffer Overflow
Severity: HIGH
Description:
This signature detects attempts to exploit a known vulnerability against Racer. A successful attack can lead to arbitrary code execution.
Supported On:
isg-3.5.141652, idp-5.1.110161014, idp-4.0.0, idp-4.0.110090709, idp-4.0.110090831, idp-4.1.0, mx-16.1, idp-4.2.0, srx-17.3, vmx-17.4, idp-5.0.0, isg-3.0.0, isg-3.1.134269, isg-3.1.135801, isg-3.4.0, isg-3.5.0, j-series-9.5, idp-4.2.110100823, idp-4.2.110101203, idp-5.1.0, idp-4.1.110110609, idp-4.1.110110719, mx-11.4, isg-3.4.139899, idp-5.0.110121210, srx-12.1, srx-branch-12.1, isg-3.4.140032, idp-5.0.110130325, vsrx-12.1, vsrx-15.1, isg-3.5.141597, idp-5.1.110160603
References:
- cve: CVE-2007-4370
- bugtraq: 25297
Affected Products:
- racer 0.5.3
HTTP:SCRIPT-INJ-VUL-0 - HTTP: SCRIPT-INJ Infection-0
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:MAL-REDIRECT-VUL-1 - HTTP: MAL-REDIRECT Infection-1
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SUSP-HDR-REDRCT-VUL-2 - HTTP: SUSP-HDR-REDRCT Infection-2
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SCRIPT-INJ-VUL-3 - HTTP: SCRIPT-INJ Infection-3
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:MAL-REDIRECT-VUL-4 - HTTP: MAL-REDIRECT Infection-4
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SUSP-HDR-REDRCT-VUL-5 - HTTP: SUSP-HDR-REDRCT Infection-5
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SCRIPT-INJ-VUL-6 - HTTP: SCRIPT-INJ Infection-6
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:MAL-REDIRECT-VUL-7 - HTTP: MAL-REDIRECT Infection-7
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SUSP-HDR-REDRCT-VUL-8 - HTTP: SUSP-HDR-REDRCT Infection-8
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SCRIPT-INJ-VUL-9 - HTTP: SCRIPT-INJ Infection-9
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:MAL-REDIRECT-VUL-10 - HTTP: MAL-REDIRECT Infection-10
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SUSP-HDR-REDRCT-VUL-11 - HTTP: SUSP-HDR-REDRCT Infection-11
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SCRIPT-INJ-VUL-12 - HTTP: SCRIPT-INJ Infection-12
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:MAL-REDIRECT-VUL-13 - HTTP: MAL-REDIRECT Infection-13
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SUSP-HDR-REDRCT-VUL-14 - HTTP: SUSP-HDR-REDRCT Infection-14
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SCRIPT-INJ-VUL-15 - HTTP: SCRIPT-INJ Infection-15
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:MAL-REDIRECT-VUL-16 - HTTP: MAL-REDIRECT Infection-16
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SUSP-HDR-REDRCT-VUL-17 - HTTP: SUSP-HDR-REDRCT Infection-17
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SCRIPT-INJ-VUL-18 - HTTP: SCRIPT-INJ Infection-18
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:MAL-REDIRECT-VUL-19 - HTTP: MAL-REDIRECT Infection-19
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SUSP-HDR-REDRCT-VUL-20 - HTTP: SUSP-HDR-REDRCT Infection-20
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SCRIPT-INJ-VUL-21 - HTTP: SCRIPT-INJ Infection-21
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:MAL-REDIRECT-VUL-22 - HTTP: MAL-REDIRECT Infection-22
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SUSP-HDR-REDRCT-VUL-23 - HTTP: SUSP-HDR-REDRCT Infection-23
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SCRIPT-INJ-VUL-24 - HTTP: SCRIPT-INJ Infection-24
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:MAL-REDIRECT-VUL-25 - HTTP: MAL-REDIRECT Infection-25
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SUSP-HDR-REDRCT-VUL-26 - HTTP: SUSP-HDR-REDRCT Infection-26
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SCRIPT-INJ-VUL-27 - HTTP: SCRIPT-INJ Infection-27
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:MAL-REDIRECT-VUL-28 - HTTP: MAL-REDIRECT Infection-28
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SUSP-HDR-REDRCT-VUL-29 - HTTP: SUSP-HDR-REDRCT Infection-29
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SCRIPT-INJ-VUL-30 - HTTP: SCRIPT-INJ Infection-30
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:MAL-REDIRECT-VUL-31 - HTTP: MAL-REDIRECT Infection-31
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SUSP-HDR-REDRCT-VUL-32 - HTTP: SUSP-HDR-REDRCT Infection-32
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SCRIPT-INJ-VUL-33 - HTTP: SCRIPT-INJ Infection-33
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:MAL-REDIRECT-VUL-34 - HTTP: MAL-REDIRECT Infection-34
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SUSP-HDR-REDRCT-VUL-35 - HTTP: SUSP-HDR-REDRCT Infection-35
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SCRIPT-INJ-VUL-36 - HTTP: SCRIPT-INJ Infection-36
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:MAL-REDIRECT-VUL-37 - HTTP: MAL-REDIRECT Infection-37
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SUSP-HDR-REDRCT-VUL-38 - HTTP: SUSP-HDR-REDRCT Infection-38
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SCRIPT-INJ-VUL-39 - HTTP: SCRIPT-INJ Infection-39
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:MAL-REDIRECT-VUL-40 - HTTP: MAL-REDIRECT Infection-40
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SUSP-HDR-REDRCT-VUL-41 - HTTP: SUSP-HDR-REDRCT Infection-41
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SCRIPT-INJ-VUL-42 - HTTP: SCRIPT-INJ Infection-42
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:MAL-REDIRECT-VUL-43 - HTTP: MAL-REDIRECT Infection-43
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SUSP-HDR-REDRCT-VUL-44 - HTTP: SUSP-HDR-REDRCT Infection-44
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SCRIPT-INJ-VUL-45 - HTTP: SCRIPT-INJ Infection-45
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:MAL-REDIRECT-VUL-46 - HTTP: MAL-REDIRECT Infection-46
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SUSP-HDR-REDRCT-VUL-47 - HTTP: SUSP-HDR-REDRCT Infection-47
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SCRIPT-INJ-VUL-48 - HTTP: SCRIPT-INJ Infection-48
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:MAL-REDIRECT-VUL-49 - HTTP: MAL-REDIRECT Infection-49
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SUSP-HDR-REDRCT-VUL-50 - HTTP: SUSP-HDR-REDRCT Infection-50
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SCRIPT-INJ-VUL-51 - HTTP: SCRIPT-INJ Infection-51
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:MAL-REDIRECT-VUL-52 - HTTP: MAL-REDIRECT Infection-52
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SUSP-HDR-REDRCT-VUL-53 - HTTP: SUSP-HDR-REDRCT Infection-53
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SCRIPT-INJ-VUL-54 - HTTP: SCRIPT-INJ Infection-54
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:MAL-REDIRECT-VUL-55 - HTTP: MAL-REDIRECT Infection-55
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SUSP-HDR-REDRCT-VUL-56 - HTTP: SUSP-HDR-REDRCT Infection-56
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SCRIPT-INJ-VUL-57 - HTTP: SCRIPT-INJ Infection-57
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:MAL-REDIRECT-VUL-58 - HTTP: MAL-REDIRECT Infection-58
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SUSP-HDR-REDRCT-VUL-59 - HTTP: SUSP-HDR-REDRCT Infection-59
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SCRIPT-INJ-VUL-60 - HTTP: SCRIPT-INJ Infection-60
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:MAL-REDIRECT-VUL-61 - HTTP: MAL-REDIRECT Infection-61
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SUSP-HDR-REDRCT-VUL-62 - HTTP: SUSP-HDR-REDRCT Infection-62
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SCRIPT-INJ-VUL-63 - HTTP: SCRIPT-INJ Infection-63
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:MAL-REDIRECT-VUL-64 - HTTP: MAL-REDIRECT Infection-64
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SUSP-HDR-REDRCT-VUL-65 - HTTP: SUSP-HDR-REDRCT Infection-65
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SCRIPT-INJ-VUL-66 - HTTP: SCRIPT-INJ Infection-66
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:MAL-REDIRECT-VUL-67 - HTTP: MAL-REDIRECT Infection-67
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SUSP-HDR-REDRCT-VUL-68 - HTTP: SUSP-HDR-REDRCT Infection-68
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SCRIPT-INJ-VUL-69 - HTTP: SCRIPT-INJ Infection-69
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:MAL-REDIRECT-VUL-70 - HTTP: MAL-REDIRECT Infection-70
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SUSP-HDR-REDRCT-VUL-71 - HTTP: SUSP-HDR-REDRCT Infection-71
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SCRIPT-INJ-VUL-72 - HTTP: SCRIPT-INJ Infection-72
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:MAL-REDIRECT-VUL-73 - HTTP: MAL-REDIRECT Infection-73
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SUSP-HDR-REDRCT-VUL-74 - HTTP: SUSP-HDR-REDRCT Infection-74
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SCRIPT-INJ-VUL-75 - HTTP: SCRIPT-INJ Infection-75
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:MAL-REDIRECT-VUL-76 - HTTP: MAL-REDIRECT Infection-76
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:SUSP-HDR-REDRCT-VUL-77 - HTTP: SUSP-HDR-REDRCT Infection-77
Severity: MEDIUM
Description:
This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.
Supported On:
srx-17.3, vsrx-15.1, srx-12.1
HTTP:STC:ADVANTECH-WEBACCESS - HTTP: Advantech WebAccess Dashboard uploadFile Arbitrary File Upload
Severity: HIGH
Description:
This signature detects attempts to exploit a known vulnerability against Dashboard component of Advantech WebAccess. Successful exploitation could allow the attacker to execute arbitrary code.
Supported On:
isg-3.5.141652, idp-5.1.110161014, idp-4.0.0, idp-4.0.110090709, idp-4.0.110090831, idp-4.1.0, mx-16.1, idp-4.2.0, srx-17.3, vmx-17.4, idp-5.0.0, isg-3.0.0, isg-3.1.134269, isg-3.1.135801, isg-3.4.0, isg-3.5.0, j-series-9.5, idp-4.2.110100823, idp-4.2.110101203, idp-5.1.0, idp-4.1.110110609, idp-4.1.110110719, mx-11.4, isg-3.4.139899, idp-5.0.110121210, srx-12.1, srx-branch-12.1, isg-3.4.140032, idp-5.0.110130325, vsrx-12.1, vsrx-15.1, isg-3.5.141597, idp-5.1.110160603
References:
- cve: CVE-2016-0854
Affected Products:
- advantech webaccess 8.0