Snort mailing list archives
Rule for sendmail-exploit
From: Joerg Weber <j.weber () infos de>
Date: 05 Mar 2003 13:32:46 +0100
Hello everyone, is there already an 'official' rule for the recent sendmail exploit? I just had a look at the rules for stable and didn't see anything. I've fiddled something together using lsd's example exploit, but in case someone has a robust rule I'd appreciate it. Same goes for the snort vuln; if someone has a packet trace/source and feels the urge to share.. ;) Regards, Joerg -- Joerg Weber Network Security infoServe GmbH Nell-Breuning-Allee 6 D-66115 Saarbruecken T: (0681) 8 80 08 - 0 F: (0681) 8 80 08 - 59 www.infos.de E: j.weber () infos de
Attachment:
signature.asc
Description: This is a digitally signed message part
Current thread:
- Rule for sendmail-exploit Joerg Weber (Mar 05)
- Re: Rule for sendmail-exploit Elvir Crnic (Mar 05)