Snort :: Changes 2006-05-24

Sourcefire VRT Update

Date: 2006-05-24

This is the complete list of rules modified and added in the Sourcefire VRT Certified rule pack.

The format of the file is:

sid - Message (rule group)

New rules:
6467 - CHAT jabber traffic detected (chat.rules)
6468 - CHAT jabber file transfer request (chat.rules)
6469 - EXPLOIT RealVNC connection attempt (exploit.rules)
6470 - EXPLOIT RealVNC authentication types sent attempt (exploit.rules)
6471 - EXPLOIT RealVNC password authentication bypass vulnerability attempt (exploit.rules)

Updated rules:
 108 - BACKDOOR QAZ Worm Client Login access (backdoor.rules)
6021 - BACKDOOR silent spy 2.10 command response port 4225 (backdoor.rules)
6022 - BACKDOOR silent spy 2.10 command response port 4226 (backdoor.rules)

Snort

Sourcefire VRT Update

Date: 2006-05-24

Snort Links

Community

Sourcefire