[Emerging-Sigs] CVE-2020-1938 Sigs

Travis Green travis.green at protectwise.com
Mon Feb 24 08:59:33 HST 2020


Hey all, I was investigating CVE-2020-1938, an LFI vuln in Apache
Tomcat AJP, and created a couple of rules for the reported PoC
scripts. Rules are attached.

More info @ https://zh-cn.tenable.com/blog/cve-2020-1938-ghostcat-apache-tomcat-ajp-file-readinclusion-vulnerability-cnvd-2020-10487

-Travis
-------------- next part --------------
A non-text attachment was scrubbed...
Name: CVE-2020-1938.rules
Type: application/octet-stream
Size: 750 bytes
Desc: not available
URL: <http://lists.emergingthreats.net/pipermail/emerging-sigs/attachments/20200224/3bfbc5c0/attachment.obj>


More information about the Emerging-sigs mailing list