""ET WEB_SPECIFIC_APPS Geutebrueck re_porter 16 - Cross-Site Scripting 2""

SID: 2026010

Revision: 2

Class Type: attempted-user

Metadata: attack_target IoT, created_at 2018_08_22, cve CVE_2018_15533, deployment Datacenter, signature_severity Major, updated_at 2018_08_22

Reference:

• Link

Protocol: tcp

Source Network: any

Source Port: any

Destination Network: $HOME_NET

Destination Port: $HTTP_PORTS

Flow: established,to_server

Contents:

• Value: "/images/IOMemoryPool.png?"

Within:

PCRE: "/\/images\/IOMemoryPool.png\?[^&]+(?:s(?:cript|tyle\x3D)|on(?:mouse[a-z]|key[a-z]|load|unload|dragdrop|blur|focus|click|dblclick|submit|reset|select|change))/Ui"

Special Options:

• http_uri

source