Emerging Threats

  • Increase font size
  • Default font size
  • Decrease font size

Weekly New Signatures October 3 2009

Monday, 05 October 2009 08:09 Matt Jonkman
E-mail Print PDF

[+++] Added rules: [+++]

2002947 - ET GAMES PunkBuster Server webkey Buffer Overflow (emerging-game.rules)
2009998 - ET TROJAN Smilebox Spyware Download (emerging-malware.rules)
2009999 - ET EXPLOIT xp_servicecontrol access (emerging-exploit.rules)
2010000 - ET EXPLOIT xp_fileexist access (emerging-exploit.rules)
2010001 - ET EXPLOIT xp_enumerrorlogs access (emerging-exploit.rules)
2010002 - ET EXPLOIT xp_readerrorlogs access (emerging-exploit.rules)
2010003 - ET EXPLOIT xp_enumdsn access (emerging-exploit.rules)
2010007 - ET TROJAN Potential Gemini Malware Download (emerging-virus.rules)
2010008 - ET P2P Octoshape P2P streaming media (emerging-p2p.rules)
2010019 - ET SCAN Tomcat Web Application Manager scanning (emerging-scan.rules)
2010030 - ET POLICY Exchange 2003 OWA plain-text E-Mail message access, not SSL (emerging-policy.rules)


[///] Modified active rules: [///]

2009967 - ET P2P eMule KAD Network Connection Request (emerging-p2p.rules)
2009968 - ET P2P eMule KAD Network Connection Request(2) (emerging-p2p.rules)
2009969 - ET P2P eMule KAD Network Firewalled Request (emerging-p2p.rules)
2009970 - ET P2P eMule Kademlia Hello Request (emerging-p2p.rules)
2009971 - ET P2P eMule KAD Network Hello Request (2) (emerging-p2p.rules)
2009972 - ET P2P eMule KAD Network Server Status Request (emerging-p2p.rules)
2009973 - ET P2P eMule KAD Network Send Username (emerging-p2p.rules)
2009976 - ET EXPLOIT Siemens Gigaset SE361 WLAN Data Flood Denial of Service Vulnerability (emerging-exploit.rules)
2009981 - ET SCAN Possible FTP Daemon Username SELECT FROM SQL Injection Attempt (emerging-scan.rules)
2009982 - ET SCAN Possible FTP Daemon Username DELETE FROM SQL Injection Attempt (emerging-scan.rules)
2009983 - ET SCAN Possible FTP Daemon Username INSERT INTO SQL Injection Attempt (emerging-scan.rules)
2009984 - ET SCAN Possible FTP Daemon Username UPDATE SET SQL Injection Attempt (emerging-scan.rules)
2009985 - ET SCAN Possible FTP Daemon Username UNION SELECT SQL Injection Attempt (emerging-scan.rules)
2009986 - ET P2P Octoshape UDP Session (emerging-p2p.rules)

 

Note: Truncated because of the major ruleset changes. Changes not listed above were name only.

< Prev   Next >
 

OISF Founded
The Open Information Security Foundation has been founded. More at http://www.openinfosecfoundation.org