SERVER-OTHER -- Snort has detected traffic exploiting vulnerabilities in a server in the network.
SERVER-OTHER FreeSWITCH mod_xml_rpc arbitrary command execution attempt
It is looking for the execution of arbitrary command while using the vulnerable query strings.
This rule alerts when an attacker attempts to exploit a command execution vulnerability in FreeSWITCH
No public information
No known false positives
Cisco Talos Intelligence Group
No rule groups
CVE-2018-19911 |
Loading description
|
Tactic: Execution
Technique: Execution through API
For reference, see the MITRE ATT&CK vulnerability types here: https://attack.mitre.org