[**] [1:45304:3] SERVER-ORACLE Oracle WebLogic Server remote command execution attempt [**] [Classification: Attempted Administrator Privilege Gain] [Priority: 1] 05/22-19:51:42.601280 103.27.176.233:25215 -> 192.168.0.38:80 TCP TTL:116 TOS:0x0 ID:6451 IpLen:20 DgmLen:1439 DF ***AP*** Seq: 0x4DEDD3DA Ack: 0x0 Win: 0x0 TcpLen: 20 [Xref => http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html][Xref => http://www.oracle.com/technetwork/security-advisory/cpuapr2017-3236618.html][Xref => http://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-3506][Xref => http://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-10271][Xref => http://www.securityfocus.com/bid/97884][Xref => http://www.securityfocus.com/bid/101304] |