""ET EXPLOIT Microsoft Exchange - Successful msExchEcpCanary Disclosure (CVE-2021-33766)""
SID: 2033835
Revision: 2
Class Type: attempted-admin
Metadata: created_at 2021_08_30, cve CVE_2021_33766, updated_at 2021_08_30
Reference:
-
cve
-
2021-33766
Protocol: tcp
Source Network: [$HOME_NET,$HTTP_SERVERS]
Source Port: any
Destination Network: any
Destination Port: any
Flow: established,from_server
Contents:
-
Value: "500"
-
Value: "msExchEcpCanary="
Within:
PCRE:
Special Options:
-
http_stat_code
-
fast_pattern
-
http_header