[Emerging-Sigs] CVE-2020-1938 Sigs

Brandon Murphy bmurphy at emergingthreats.net
Mon Feb 24 11:45:06 HST 2020


Hey Travis!  Sorry, I missed these for today's update, but I will get
them in for QA tomorrow!

Thanks you for your continued contributions!

-Brandon


On 02/24/20 12:59, Travis Green via Emerging-sigs wrote:
> Hey all, I was investigating CVE-2020-1938, an LFI vuln in Apache
> Tomcat AJP, and created a couple of rules for the reported PoC
> scripts. Rules are attached.
>
> More info @ https://zh-cn.tenable.com/blog/cve-2020-1938-ghostcat-apache-tomcat-ajp-file-readinclusion-vulnerability-cnvd-2020-10487
>
> -Travis
>
> _______________________________________________
> Emerging-sigs mailing list
> Emerging-sigs at lists.emergingthreats.net
> https://lists.emergingthreats.net/mailman/listinfo/emerging-sigs
>
> Support Emerging Threats! Subscribe to Emerging Threats Pro http://www.emergingthreats.net
>

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.emergingthreats.net/pipermail/emerging-sigs/attachments/20200224/310bce78/attachment.html>


More information about the Emerging-sigs mailing list