CVE-2018-11759 Exploitation Attempt

calendar Aug 21, 2020  ยท
Share on: linkedin copy

Detects path traversal vulnerability in mod_jk module

Sigma rule (View on GitHub)

 1title: CVE-2018-11759 Exploitation Attempt
 2id: d65b6211-b689-4ca1-8848-54eb0a94f80c
 3status: experimental
 4description: Detects path traversal vulnerability in mod_jk module
 5references:
 6  - https://github.com/immunIT/CVE-2018-11759
 7author: Loginsoft Research Unit 
 8date: 2020/06/17
 9logsource:
10  product: apache
11  category: webserver
12detection:
13  selection:
14    c-uri: '*/jkstatus;'
15    sc-status: 200
16  keywords:
17    - 'client denied by server configuration: jkstatus'
18  condition: selection or keywords
19level: medium```

References

to-top