FILE-OTHER -- Snort detected traffic targeting vulnerabilities in a file type that does not require enough rule coverage to have its own category.
FILE-OTHER Jackson databind deserialization remote code execution attempt
This event is generated when an attacker attempts to send force the Java deserialization of a malicious JSON object. Impact: Attempted User Privilege Gain Details: Looks for malicious Java classes to be deserialized Ease of Attack: Medium; information is publicly available, but it does require a) the right conditions and b) some exploit modification
No information provided
No public information
No known false positives
Cisco Talos Intelligence Group
No rule groups
CVE-2017-15095 |
Loading description
|