[Snort-sigs] Emerging Threats Daily Signature Changes

emerging at ...3335... emerging at ...3335...
Fri Feb 22 17:00:09 EST 2008


[***] Results from Oinkmaster started Fri Feb 22 17:00:09 2008 [***]

[+++]          Added rules:          [+++]

  207873 - ET WEB WinIPDS Directory Traversal Vulnerabilities POST (bleeding-web.rules)
 2007871 - ET WEB Philips VOIP841 Web Server Directory Traversal (bleeding-web.rules)
 2007872 - ET WEB WinIPDS Directory Traversal Vulnerabilities GET (bleeding-web.rules)
 2007874 - ET EXPLOIT Now SMS/MMS Gateway HTTP BOF Vulnerability (bleeding-exploit.rules)
 2007875 - ET EXPLOIT Now SMS/MMS Gateway SMPP BOF Vulnerability (bleeding-exploit.rules)
 2007876 - ET EXPLOIT ExtremeZ-IP File and Print Server Multiple Vulnerabilities - udp (bleeding-exploit.rules)
 2007877 - ET EXPLOIT ExtremeZ-IP File and Print Server Multiple Vulnerabilities - tcp (bleeding-exploit.rules)
 2007878 - ET WEB Apple QuickTime <= 7.4.1 QTPlugin.ocx Multiple Remote Stack Overflow (bleeding-web.rules)
 2007879 - ET EXPLOIT Cyan Soft Products Format String Vulnerability (bleeding-exploit.rules)


[///]     Modified active rules:     [///]

 2003330 - ET POLICY Possible Spambot -- Host DNS MX Query High Count (bleeding-policy.rules)


[+++]      Added non-rule lines:     [+++]

     -> Added to bleeding-exploit.rules (3):
        #by Akash Mahajan
        #by Akash Mahajan
        #by Akash Mahajan

     -> Added to bleeding-sid-msg.map (9):
        207873 || ET WEB WinIPDS Directory Traversal Vulnerabilities POST || bugtraq,27757 || url,aluigi.altervista.org/adv/winipds-adv.txt
        2007871 || ET WEB Philips VOIP841 Web Server Directory Traversal || bugtraq,27790 || url,www.milw0rm.com/exploits/5113
        2007872 || ET WEB WinIPDS Directory Traversal Vulnerabilities GET || bugtraq,27757 || url,aluigi.altervista.org/adv/winipds-adv.txt
        2007874 || ET EXPLOIT Now SMS/MMS Gateway HTTP BOF Vulnerability || url,aluigi.altervista.org/adv/nowsmsz-adv.txt || bugtraq,27896
        2007875 || ET EXPLOIT Now SMS/MMS Gateway SMPP BOF Vulnerability || url,aluigi.altervista.org/adv/nowsmsz-adv.txt || bugtraq,27896
        2007876 || ET EXPLOIT ExtremeZ-IP File and Print Server Multiple Vulnerabilities - udp || cve,CVE-2008-0767 || url,aluigi.altervista.org/adv/ezipirla-adv.txt || bugtraq,27718
        2007877 || ET EXPLOIT ExtremeZ-IP File and Print Server Multiple Vulnerabilities - tcp || cve,CVE-2008-0759 || url,aluigi.altervista.org/adv/ezipirla-adv.txt || bugtraq,27718
        2007878 || ET WEB Apple QuickTime <= 7.4.1 QTPlugin.ocx Multiple Remote Stack Overflow || url,www.milw0rm.com/exploits/5110 || cve,CVE-2008-0778 || bugtraq,27769
        2007879 || ET EXPLOIT Cyan Soft Products Format String Vulnerability || url,aluigi.altervista.org/adv/cyanuro-adv.txt || bugtraq,27728 || cve,CVE-2008-0755

     -> Added to bleeding-sid-msg.map.txt (9):
        207873 || ET WEB WinIPDS Directory Traversal Vulnerabilities POST || bugtraq,27757 || url,aluigi.altervista.org/adv/winipds-adv.txt
        2007871 || ET WEB Philips VOIP841 Web Server Directory Traversal || bugtraq,27790 || url,www.milw0rm.com/exploits/5113
        2007872 || ET WEB WinIPDS Directory Traversal Vulnerabilities GET || bugtraq,27757 || url,aluigi.altervista.org/adv/winipds-adv.txt
        2007874 || ET EXPLOIT Now SMS/MMS Gateway HTTP BOF Vulnerability || url,aluigi.altervista.org/adv/nowsmsz-adv.txt || bugtraq,27896
        2007875 || ET EXPLOIT Now SMS/MMS Gateway SMPP BOF Vulnerability || url,aluigi.altervista.org/adv/nowsmsz-adv.txt || bugtraq,27896
        2007876 || ET EXPLOIT ExtremeZ-IP File and Print Server Multiple Vulnerabilities - udp || cve,CVE-2008-0767 || url,aluigi.altervista.org/adv/ezipirla-adv.txt || bugtraq,27718
        2007877 || ET EXPLOIT ExtremeZ-IP File and Print Server Multiple Vulnerabilities - tcp || cve,CVE-2008-0759 || url,aluigi.altervista.org/adv/ezipirla-adv.txt || bugtraq,27718
        2007878 || ET WEB Apple QuickTime <= 7.4.1 QTPlugin.ocx Multiple Remote Stack Overflow || url,www.milw0rm.com/exploits/5110 || cve,CVE-2008-0778 || bugtraq,27769
        2007879 || ET EXPLOIT Cyan Soft Products Format String Vulnerability || url,aluigi.altervista.org/adv/cyanuro-adv.txt || bugtraq,27728 || cve,CVE-2008-0755

     -> Added to bleeding-web.rules (3):
        #by Akash Mahajan
        #by Akash Mahajan
        #by Akash Mahajan





More information about the Snort-sigs mailing list