[Snort-sigs] Bleedingsnort.com Daily Update

bleeding at ...2727... bleeding at ...2727...
Tue Feb 22 17:01:27 EST 2005


[***] Results from Oinkmaster started Tue Feb 22 20:00:04 2005 [***]

[+++]          Added rules:          [+++]

     -> Added to bleeding-exploit.rules (1):
        alert tcp $EXTERNAL_NET any -> $HOME_NET any (msg:"BLEEDING-EDGE Exploit Arkeia full remote access without password or authentication"; content:"|464F3A20596F75206861766520737563|"; content:"|6520636C69656E7420696E666F726D61|"; flow:from_server,established; classtype:attempted-admin; reference:url,metasploit.com/research/arkeia_agent; sid:2001742; rev:1;)

[+++]      Added non-rule lines:     [+++]

     -> Added to bleeding-exploit.rules (1):
        #From Bdoctor

     -> Added to bleeding-sid-msg.map (1):
        2001742 || BLEEDING-EDGE Exploit Arkeia full remote access without password or authentication || url,metasploit.com/research/arkeia_agent

[*] Added files: [*]
    None.





More information about the Snort-sigs mailing list