[Snort-sigs] Bleedingsnort.com Daily Update

bleeding at ...2727... bleeding at ...2727...
Tue Oct 25 18:53:41 EDT 2005


[***] Results from Oinkmaster started Tue Oct 25 20:00:12 2005 [***]

[+++]          Added rules:          [+++]

 2002662 - BLEEDING-EDGE WEB TWiki INCLUDE remote command execution attempt (bleeding-web.rules)
 2002663 - BLEEDING-EDGE WEB e107 resetcore.php SQL Injection attempt (bleeding-web.rules)


[---]         Disabled rules:        [---]

 2002661 - BLEEDING-EDGE EXPLOIT Snort Back Orifice pre-processor buffer overflow attempt (bleeding-exploit.rules)


[+++]      Added non-rule lines:     [+++]

     -> Added to bleeding-exploit.rules (1):
        #Disabling by default. This is now caught by the upgraded BO preproc 2.4.3+

     -> Added to bleeding-sid-msg.map (2):
        2002662 || BLEEDING-EDGE WEB TWiki INCLUDE remote command execution attempt || bugtraq,14960
        2002663 || BLEEDING-EDGE WEB e107 resetcore.php SQL Injection attempt || bugtraq,15125

     -> Added to bleeding-web.rules (2):
        # By David Maciejak, 2005-10-24
        # Submitted by David Maciejak, 2005-10-24





More information about the Snort-sigs mailing list