[Snort-sigs] RE:[Snort-sigs]WEB-CGI signatures

Steve Halligan agent33 at ...22...
Thu Sep 27 10:18:02 EDT 2001


This is an email I sent to the list about this rule awhile ago

<-------------begin cut--------->
I found the answer for this rule, but there are many more like it in
web-cgi.rules.  I know I know
I should go fix it.  
a scan for /calendar is probably looking for CVE-2000-0432.  The perl script
/cgi-bin/calendar_admin.pl and a bunch of exploits...etc...etc.

-Steve 




More information about the Snort-sigs mailing list