""ET WEB_SPECIFIC_APPS Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway - Process Kill""
SID: 2025849
Revision: 2
Class Type: attempted-dos
Metadata: attack_target Server, created_at 2018_07_17, deployment Datacenter, performance_impact Low, signature_severity Major, updated_at 2018_07_17
Reference:
Protocol: tcp
Source Network: $EXTERNAL_NET
Source Port: any
Destination Network: $HTTP_SERVERS
Destination Port: $HTTP_PORTS
Flow: established,to_server
Contents:
-
Value: "/status-processes.sh"
-
Value: "signal=SIGILL&pid="
-
Value: "&kill=+Send+"
Within:
PCRE:
Special Options:
-
http_uri
-
fast_pattern
-
http_client_body
-
http_client_body