[Snort-sigs] Bleeding Edge Threats Daily Signature Changes

bleeding at ...3254... bleeding at ...3254...
Sat May 5 16:00:05 EDT 2007


[***] Results from Oinkmaster started Sat May  5 16:00:05 2007 [***]

[///]     Modified active rules:     [///]

 2002682 - BLEEDING-EDGE EXPLOIT Microsoft Internet Explorer Window() Possible Code Execution (bleeding-exploit.rules)
 2002734 - BLEEDING-EDGE EXPLOIT WMF Exploit (bleeding-exploit.rules)
 2002860 - BLEEDING-EDGE EXPLOIT Internet Explorer createTextRange Code Execution (bleeding-exploit.rules)
 2003109 - BLEEDING-EDGE EXPLOIT Microsoft Internet Explorer VML Fill Method Attribute Overflow (bleeding-exploit.rules)
 2003632 - BLEEDING-EDGE VIRUS Zlob User Agent - updating (internetsecurity) (bleeding-virus.rules)


[///]    Modified inactive rules:    [///]

 2002909 - BLEEDING-EDGE EXPLOIT Internet Explorer Cryptomathic ActiveX createPKCS10 Access (bleeding-exploit.rules)


[+++]      Added non-rule lines:     [+++]

     -> Added to bleeding-sid-msg.map (6):
        2002682 || BLEEDING-EDGE EXPLOIT Microsoft Internet Explorer Window() Possible Code Execution || cve,2005-1790 || url,www.computerterrorism.com/research/ie/ct21-11-2005 || url,secunia.com/advisories/15546
        2002734 || BLEEDING-EDGE EXPLOIT WMF Exploit || url,www.frsirt.com/exploits/20051228.ie_xp_pfv_metafile.pm.php
        2002860 || BLEEDING-EDGE EXPLOIT Internet Explorer createTextRange Code Execution || cve,2006-1359 || bugtraq,17196
        2002909 || BLEEDING-EDGE EXPLOIT Internet Explorer Cryptomathic ActiveX createPKCS10 Access || bugtraq,17852 || cve,2006-1172
        2003109 || BLEEDING-EDGE EXPLOIT Microsoft Internet Explorer VML Fill Method Attribute Overflow || bugtraq,20096 || cve,2006-4868
        2003632 || BLEEDING-EDGE VIRUS Zlob User Agent - updating (internetsecurity) || url,secubox.aldria.com/topic-post1618.html#post1618

[---]     Removed non-rule lines:    [---]

     -> Removed from bleeding-sid-msg.map (6):
        2002682 || BLEEDING-EDGE CURRENT EVENTS Microsoft Internet Explorer Window() Possible Code Execution || cve,2005-1790 || url,www.computerterrorism.com/research/ie/ct21-11-2005 || url,secunia.com/advisories/15546
        2002734 || BLEEDING-EDGE CURRENT WMF Exploit || url,www.frsirt.com/exploits/20051228.ie_xp_pfv_metafile.pm.php
        2002860 || BLEEDING-EDGE WEB CLIENT Internet Explorer createTextRange Code Execution || cve,2006-1359 || bugtraq,17196
        2002909 || BLEEDING-EDGE WEB CLIENT Internet Explorer Cryptomathic ActiveX createPKCS10 Access || bugtraq,17852 || cve,2006-1172
        2003109 || BLEEDING-EDGE Microsoft Internet Explorer VML Fill Method Attribute Overflow || bugtraq,20096 || cve,2006-4868
        2003632 || BLEEDING-EDGE CURRENT EVENTS Zlob User Agent - updating (internetsecurity) || url,secubox.aldria.com/topic-post1618.html#post1618





More information about the Snort-sigs mailing list