SID 1:37443

Report a false positive

Rule Category

SQL -- Snort has detected traffic associated with SQL injection or the presence of other vulnerabilities against SQL like servers.

Alert Message

SQL use of sleep function with select - likely SQL injection

Rule Explanation

This event is generated when SQL use of sleep function with select - likely SQL injection is detected. Impact: Web Application Attack Details: Ease of Attack:

What To Look For

This rule alerts when a sleep function is used during a SQL injection

Known Usage

No public information

False Positives

No known false positives

Contributors

Cisco Talos Intelligence Group

Rule Groups

No rule groups

CVE

None

Additional Links

www.owasp.org/index.php/Blind_SQL_Injection

Rule Vulnerability

No information provided

CVE Additional Information

This product uses data from the NVD API but is not endorsed or certified by the NVD.

None

MITRE ATT&CK Framework

Tactic: Defense Evasion

Technique: Web Service

For reference, see the MITRE ATT&CK vulnerability types here: https://attack.mitre.org