[Emerging-Sigs] Android - CVE-2014-6041

Will Metcalf wmetcalf at emergingthreatspro.com
Mon Sep 15 17:39:05 EDT 2014


Awesome! thanks Jaime! Will get into QA.

Regards,

Will

On Mon, Sep 15, 2014 at 4:32 PM, Jaime Blasco <jaime.blasco at alienvault.com>
wrote:

>
> https://community.rapid7.com/community/metasploit/blog
>
> Proposed sig:
>
> alert http $EXTERNAL_NET any -> $HOME_NET any (msg:"ET CURRENT_EVENTS
> Possible Android CVE-2014_6041"; flow:from_server,established;
> content:"|5c|u0000javascript:"; nocase; reference:url,
> 1337day.com/exploit/22581; classtype:trojan-activity; sid:1111111; rev:1;)
>
> Regards
> --
> _______________________________
>
> Jaime Blasco
>
> AlienVault Labs Director
>
> www.ossim.com
> labs.alienvault.com
> Email: jaime.blasco at alienvault.com
>
> http://twitter.com/jaimeblascob
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.emergingthreats.net/pipermail/emerging-sigs/attachments/20140915/ef7ad191/attachment-0001.html>


More information about the Emerging-sigs mailing list