""ET WEB_SERVER JBoss jmx-console Access Control Bypass Attempt""
SID: 2014018
Revision: 1
Class Type: web-application-activity
Metadata: created_at 2011_12_10, cve CVE_2010_0738, updated_at 2011_12_10
Reference:
-
cve
-
2010-0738
Protocol: tcp
Source Network: $EXTERNAL_NET
Source Port: any
Destination Network: $HOME_NET
Destination Port: $HTTP_PORTS
Flow: to_server,established
Contents:
-
Value: "HEAD"
-
Value: "/jmx-console/HtmlAdaptor?"
-
Value: "Runtime.getRuntime().exec("
Within:
PCRE:
Special Options:
-
http_method
-
http_uri
-
nocase
-
http_uri