SERVER-OTHER -- Snort has detected traffic exploiting vulnerabilities in a server in the network.
SERVER-OTHER RabbitMQ X-Reason HTTP header denial-of-service attempt
This event is generated when an attempt to exploit RabbitMQ via CVE-2019-11287 is detected. Impact: Detection of a Denial of Service Attack Details: The "X-Reason" HTTP Header can be leveraged to insert a malicious Erlang format string that will expand and consume the heap, resulting in the server crashing. Ease of Attack: Simple, this can be done with any command line tool that allows an attacker to send http requests.
No information provided
No public information
No known false positives
Cisco Talos Intelligence Group
No rule groups
CVE-2019-11287 |
Loading description
|