[Snort-sigs] Sourcefire VRT Certified Snort Rules Update

research at ...435... research at ...435...
Tue Jan 27 16:15:02 EST 2009


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

ourcefire VRT Certified Snort Rules Update

Synopsis:
The Sourcefire VRT is aware of multiple vulnerabilities affecting
Oracle products.

Details:
Oracle Secure Backup Command Injection (CVE-2008-4006):
Oracle Secure Backup contains several programming errors that may allow
remote attackers to inject commands of their choosing that the
application then executes in the context of the user running the
service.

A rule to detect attacks targeting this vulnerability is included in
this release and is identified with GID 1, SID 15257.

Oracle BPEL Injection (CVE-2008-4014):
Oracle BPEL contains several programming errors that may allow remote
attackers to inject commands of their choosing that the application
then executes in the context of the user running the service.

A rule to detect attacks targeting this vulnerability is included in
this release and is identified with GID 1, SID 15256.

Oracle Secure Backup Command Injection (CVE-2008-5440):
Oracle Secure Backup contains several programming errors that may allow
remote attackers to inject commands of their choosing that the
application then executes in the context of the user running the
service.

A rule to detect attacks targeting this vulnerability is included in
this release and is identified with GID 1, SID 15264.

Oracle Secure Backup Buffer Overflow (CVE-2008-5444):
Oracle Secure Backup contains several programming errors that may allow
a remote attacker to execute code on a vulnerable system.

A rule to detect attacks targeting this vulnerability is included in
this release and is identified with GID 1, SID 15255.

Oracle Secure Backup Command Injection (CVE-2008-5448):
Oracle Secure Backup contains several programming errors that may allow
remote attackers to inject commands of their choosing that the
application then executes in the context of the user running the
service.

Rules to detect attacks targeting this vulnerability are included in
this release and are identified with GID 1, SIDs 15261 and 15262.

Oracle Secure Backup Command Injection (CVE-2008-5449):
Oracle Secure Backup contains several programming errors that may allow
remote attackers to inject commands of their choosing that the
application then executes in the context of the user running the
service.

A rule to detect attacks targeting this vulnerability is included in
this release and is identified with GID 1, SID 15258.

Oracle BEA WebLogic Denial of Service (CVE-2008-5457):
Oracle BEA WebLogic Apache Connector contains a vulnerability that may
allow a remote attacker to cause a Denial of Service (DoS) against the
application.

A rule to detect attacks targeting this vulnerability is included in
this release and is identified with GID 1, SID 15263.

For a complete list of new and modified rules please see:

http://www.snort.org/vrt/docs/ruleset_changelogs/changes-2009-01-27.html
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFJf2un8GAEVQeoGrMRAnamAJ935Rf6MeBevbJmYCRMa5T8bzayCACgi1y5
OpId5/i3Dmm64ywsqU3heHk=
=uXz3
-----END PGP SIGNATURE-----




More information about the Snort-sigs mailing list