![[Silicon Defense logo]](../SDlogo.gif)
|
SnortSnarf signature pageSERVER-WEBAPP D-Link DSL-2750B routers login.cgi command injection attemptSnortSnarf v021111.1 |
| Signature section (773) | Top 20 source IPs | Top 20 dest IPs |
16 alerts with this signature using input module SnortFileInput, with sources:
Earliest such alert at 01:13:05.726485 on 06/29/2020
Latest such alert at 23:54:10.226878 on 11/04/2020
| SERVER-WEBAPP D-Link DSL-2750B routers login.cgi command injection attempt | 12 sources | 1 destinations |
| Priority: 1 | Classification: Web Application Attack | |
| [url:seclists.org/fulldisclosure/2016/Feb/53] [sid:46736] | ||
| Source | # Alerts (sig) | # Alerts (total) | # Dsts (sig) | # Dsts (total) |
| 47.97.6.155 | 3 | 3 | 1 | 1 |
| 103.11.209.146 | 3 | 6 | 1 | 1 |
| 221.132.101.247 | 1 | 2 | 1 | 1 |
| 206.189.125.14 | 1 | 1 | 1 | 1 |
| 175.158.124.107 | 1 | 2 | 1 | 1 |
| 126.90.59.69 | 1 | 2 | 1 | 1 |
| 103.72.63.149 | 1 | 1 | 1 | 1 |
| 42.148.255.70 | 1 | 2 | 1 | 1 |
| 124.150.236.51 | 1 | 2 | 1 | 1 |
| 118.111.168.230 | 1 | 2 | 1 | 1 |
| 124.141.28.58 | 1 | 2 | 1 | 1 |
| 123.176.158.247 | 1 | 2 | 1 | 1 |
| Destinations | # Alerts (sig) | # Alerts (total) | # Srcs (sig) | # Srcs (total) |
| 192.168.0.38 | 16 | 769 | 12 | 431 |