Mittwoch, 9. Januar 2013

ruleset-update / misc RAILS/ColdFusion - Vulns



download the complete rulesets:
https://bitbucket.org/lazy_dogtown/doxi-rules/src
[+] new sigs:
  42000228 :: web_server.rules     :: DN WEB_SERVER /etc/passwd encoded as Base64
  42000229 :: app_server.rules     :: DN APP_SERVER ColdFusion - Vuln-URL-Access administrator
  42000231 :: app_server.rules     :: DN APP_SERVER ColdFusion - Vuln-URL-Access componentutils
  42000230 :: app_server.rules     :: DN APP_SERVER ColdFusion - Vuln-URL-Access adminapi
  42000233 :: app_server.rules     :: DN APP_SERVER Possible RAILS - Exploit using type=symbol
  42000232 :: app_server.rules     :: DN APP_SERVER Possible RAILS - Exploit using type=yaml



Keine Kommentare:

Kommentar veröffentlichen