Question
Given the ET Rule: alert tcp $EXTERNAL_NET any -> $HOME_NET $HTTP_PORTS (msg:ET WEB_SPECIFIC_APPS Comtrend ADSL Router srvName parameter XSS attempt; flow:established,to_server; content:GET; http_method; content:/scvrtsrv.cmd?; nocase;
Given the ET Rule: alert tcp $EXTERNAL_NET any -> $HOME_NET $HTTP_PORTS (msg:"ET WEB_SPECIFIC_APPS Comtrend ADSL Router srvName parameter XSS attempt"; flow:established,to_server; content:"GET"; http_method; content:"/scvrtsrv.cmd?"; nocase; http_uri; content:"srvName="; nocase; http_uri; pcre:"/(script|onmouse[a-z]+|onkey[a-z]+|onload|onunload|ondragdrop|onblur|onfocus|onclick|ondblclick|onsubmit|onreset|onselect|onchange)/Ui"; reference:url,packetstorm.foofus.com/1001-exploits/comtrend-xss.txt; reference:url,xforce.iss.net/xforce/xfdb/47765; reference:url,doc.emergingthreats.net/2011019; classtype:web-application-attack; sid:2011019; rev:4;)
Briefly describe what this rule does. (remember where to look if you need more information on rule)
Step by Step Solution
There are 3 Steps involved in it
Step: 1
Get Instant Access to Expert-Tailored Solutions
See step-by-step solutions with expert insights and AI powered tools for academic success
Step: 2
Step: 3
Ace Your Homework with AI
Get the answers you need in no time with our AI-driven, step-by-step assistance
Get Started
Horngrens Accounting Volume 1
Authors: Tracie Miller Nobles, Brenda Mattison, Ella Mae Matsumura, Carol Meissner, JoAnn Johnston, Peter Norwood
11th Canadian Edition
0135359708, 9780135359709
