[Snort-sigs] FW: SNMP vulnerability in AVAYA Cajun firmware

Michael Scheidell scheidell at ...249...
Mon Aug 5 23:40:02 EDT 2002


> alert udp $EXTERNAL_NET any -> $HOME_NET 161 \
> (msg:"INCOMING AVAYA Cajun Firmware R+W SNMP ACCESS" \
> content:"NoGaH$@!" classtype: misc-attack;)
> 
> alert udp $HOME_NET any -> $EXTERNAL_NET 161 \
> (msg:"OUTGOING AVAYA Cajun Firmware R+W SNMP ACCESS" \
> content:"NoGaH$@!" classtype: misc-attack;)
> 
> Thoughts comments?

One rule to ring them all?

alert udp any any -> any 161 \
(msg:"AVAYA Cajun Firmware R+W SNMP ACCESS" \
content:"NoGaH$@!" classtype: misc-attack;)

-- 
Michael Scheidell, CEO
SECNAP Network Security, LLC 
Sales: 866-SECNAPNET / (1-866-732-6276)
Main: 561-368-9561 / www.secnap.net
Looking for a career in Internet security?
http://www.secnap.net/employment/




More information about the Snort-sigs mailing list