[Snort-sigs] Bleedingsnort.com Daily Update

bleeding at ...2727... bleeding at ...2727...
Sat Aug 20 18:01:38 EDT 2005


[***] Results from Oinkmaster started Sat Aug 20 20:00:07 2005 [***]

[+++]          Added rules:          [+++]

 2002313 - BLEEDING-EDGE WEB Cacti graph_image.php Remote Command Execution Attempt (bleeding-web.rules)


[///]     Modified active rules:     [///]

 2001751 - BLEEDING-EDGE Nullsoft Shoutcast Server Format String Attack (bleeding-exploit.rules)


[---]         Disabled rules:        [---]

 2002304 - BLEEDING-EDGE MALWARE Advertising.com Reporting Data (bleeding-malware.rules)


[+++]      Added non-rule lines:     [+++]

     -> Added to bleeding-exploit.rules (1):
        #by Blake Hartstein

     -> Added to bleeding-malware.rules (1):
        #Hits on normal ads, not reporting data

     -> Added to bleeding-sid-msg.map (2):
        2001751 || BLEEDING-EDGE Nullsoft Shoutcast Server Format String Attack || bugtraq,12096 || cve,2004-1373
        2002313 || BLEEDING-EDGE WEB Cacti graph_image.php Remote Command Execution Attempt || bugtraq,14129 || cve,CAN-2005-1524

[---]     Removed non-rule lines:    [---]

     -> Removed from bleeding-exploit.rules (1):
        #by Nicholas Nachefski

     -> Removed from bleeding-sid-msg.map (1):
        2001751 || BLEEDING-EDGE EXPLOIT Shoutcast file request overflow || url,www.frsirt.com/exploits/product/3514 || cve,CAN-2002-1470





More information about the Snort-sigs mailing list