Snort :: Changes 2008-05-29

Sourcefire VRT Rules Update

Date: 2008-05-29

This is the complete list of rules modified and added in the Sourcefire VRT Certified rule pack for Snort version 2.8.

The format of the file is:

sid - Message (rule group)

New rules:
13819 <-> WEB-MISC IBM Lotus Domino Web Server Accept-Language header buffer overflow attempt (web-misc.rules)
13820 <-> WEB-CLIENT Adobe Flash player SWF scene and label data memory corruption attempt (web-client.rules)
13821 <-> WEB-CLIENT Adobe Flash player SWF scene and label data memory corruption attempt (web-client.rules)
13822 <-> WEB-CLIENT Adobe Flash player SWF scene and label data memory corruption attempt (web-client.rules)

Updated rules:
13656 <-> WEB-MISC Cisco Secure Access Control Server UCP Application CSuserCGI.exe buffer overflow attempt (web-misc.rules)
13715 <-> WEB-MISC HP OpenView Network Node Manager HTTP handling buffer overflow attempt (web-misc.rules)
13799 <-> WEB-CLIENT IBM Lotus Expeditor cai URI Handler Command Execution attempt (web-client.rules)

Snort

Sourcefire VRT Rules Update

Date: 2008-05-29

Snort Links

Community

Sourcefire