[Snort-sigs] Bleeding Edge Threats Daily Signature Changes

bleeding at ...3254... bleeding at ...3254...
Sat Jan 13 15:00:05 EST 2007


[***] Results from Oinkmaster started Sat Jan 13 20:00:05 2007 [***]

[///]     Modified active rules:     [///]

 2003251 - BLEEDING-EDGE MALWARE SpySheriff Intial Phone Home (bleeding-malware.rules)


[---]  Disabled and modified rules:  [---]

 2003249 - BLEEDING-EDGE Exploit Adobe Acrobat Open Parameter URL Client Request (bleeding-exploit.rules)


[---]         Disabled rules:        [---]

 2003247 - BLEEDING-EDGE Exploit Adobe Acrobat Open Parameter Javascript Client Request (bleeding-exploit.rules)


[+++]      Added non-rule lines:     [+++]

     -> Added to bleeding-attack_response.rules (1):
        # $Id: bleeding-attack_response.rules $

     -> Added to bleeding-dos.rules (1):
        # $Id: bleeding-dos.rules $

     -> Added to bleeding-exploit.rules (3):
        # $Id: bleeding-exploit.rules $
        #Disabling. This will never hit, since the parameters are stripped from the uri before the browser makes the request. The request will be for the pdf only
        #Disabling. This will never hit, since the parameters are stripped from the uri before the browser makes the request. The request will be for the pdf only

     -> Added to bleeding-game.rules (1):
        # $Id: bleeding-game.rules $

     -> Added to bleeding-inappropriate.rules (1):
        # $Id: bleeding-inappropriate.rules $

     -> Added to bleeding-malware.rules (1):
        # $Id: bleeding-malware.rules $

     -> Added to bleeding-p2p.rules (1):
        # $Id: bleeding-p2p.rules $

     -> Added to bleeding-policy.rules (1):
        # $Id: bleeding-policy.rules $

     -> Added to bleeding-scan.rules (1):
        # $Id: bleeding-scan.rules $

     -> Added to bleeding-virus.rules (1):
        # $Id: bleeding-virus.rules $

     -> Added to bleeding-web.rules (1):
        # $Id: bleeding-web.rules $





More information about the Snort-sigs mailing list