""ET WEB_SPECIFIC_APPS Geutebrueck re_porter 16 - Cross-Site Scripting 4""

SID: 2026012

Revision: 2

Class Type: attempted-user

Metadata: attack_target IoT, created_at 2018_08_22, cve CVE_2018_15533, deployment Datacenter, signature_severity Major, updated_at 2018_08_22

Reference:

Protocol: tcp

Source Network: any

Source Port: any

Destination Network: $HOME_NET

Destination Port: $HTTP_PORTS

Flow: established,to_server

Contents:

  • Value: "/images/GLIBBackground.jpg?"

Within:

PCRE: "/\/images\/GLIBBackground.jpg\?[^&]+(?:s(?:cript|tyle\x3D)|on(?:mouse[a-z]|key[a-z]|load|unload|dragdrop|blur|focus|click|dblclick|submit|reset|select|change))/Ui"

Special Options:

  • http_uri

source