A deep-dive into the SolarWinds Serv-U SSH vulnerability - Microsoft Security Blog
Tags
country: China
attack-pattern: Data Direct Exploits - T1587.004 Exploits - T1588.005 Python - T1059.006 Server - T1583.004 Server - T1584.004 Software - T1592.002 Ssh - T1021.004 Vulnerabilities - T1588.006
Show in Graph
Common Information
Type Value
UUID c78c3fce-5358-4b98-b90f-3b49b3164fbe
Fingerprint ac99a992e8a3d081
Analysis status DONE
Considered CTI value 0
Text language
Published Sept. 2, 2021, 9 a.m.
Added to db Sept. 26, 2022, 9:34 a.m.
Last updated Nov. 17, 2024, 5:55 p.m.
Headline A deep-dive into the SolarWinds Serv-U SSH vulnerability
Title A deep-dive into the SolarWinds Serv-U SSH vulnerability - Microsoft Security Blog
Detected Hints/Tags/Attributes 56/2/5
Source URLs
Redirection Url
Details Source https://www.microsoft.com/security/blog/2021/09/02/a-deep-dive-into-the-solarwinds-serv-u-ssh-vulnerability/
URL Provider
Details Provider Source level domain
Details microsoft.com www.microsoft.com
Attributes
Details Type #Events CTI Value
Details CVE 17 
cve-2021-35211
Details File 1 
serv-u.dll
Details File 1 
rhinonet.dll
Details File 35 
libeay32.dll
Details Deprecated Microsoft Threat Actor Naming Taxonomy (Groups in development) 11 
DEV-0322