""ET EXPLOIT IBM WebSphere - RCE Java Deserialization""
SID: 2024062
Revision: 2
Class Type: attempted-user
Metadata: affected_product IBM_Websphere, attack_target Server, created_at 2017_03_15, cve CVE_2015_7450, deployment Perimeter, performance_impact Low, signature_severity Major, updated_at 2017_03_15
Reference:
-
cve
-
2015-7450
Protocol: tcp
Source Network: $EXTERNAL_NET
Source Port: any
Destination Network: $HOME_NET
Destination Port: 8880
Flow: to_server,established
Contents:
-
Value: "SOAPAction|3a| |22|urn:AdminService|22|"
-
Value: "
" -
Value: "vcmcuYXBhY2hlLmNvbW1vbnMuY29sbGVjdGlvbn"
Within:
PCRE:
Special Options: