Sourcefire VRT Update
Date: 2007-01-22
This is the complete list of rules modified and added in the Sourcefire VRT Certified rule pack.
The format of the file is:
sid - Message (rule group)
New rules: 1967 <-> WEB-PHP phpbb quick-reply.php arbitrary command attempt (web-php.rules) 7560 <-> SPYWARE-PUT Trackware purityscan runtime detection - self update (spyware-put.rules) 9850 <-> NETBIOS SMB tapisrv little endian alter context attempt (netbios.rules) 9851 <-> NETBIOS SMB tapisrv WriteAndX little endian alter context attempt (netbios.rules) 9852 <-> NETBIOS SMB tapisrv unicode little endian alter context attempt (netbios.rules) 9853 <-> NETBIOS SMB tapisrv WriteAndX unicode little endian alter context attempt (netbios.rules) 9854 <-> NETBIOS SMB-DS tapisrv little endian alter context attempt (netbios.rules) 9855 <-> NETBIOS SMB-DS tapisrv WriteAndX little endian alter context attempt (netbios.rules) 9856 <-> NETBIOS SMB-DS tapisrv unicode little endian alter context attempt (netbios.rules) 9857 <-> NETBIOS SMB-DS tapisrv WriteAndX unicode little endian alter context attempt (netbios.rules) 9858 <-> NETBIOS SMB tapisrv bind attempt (netbios.rules) 9859 <-> NETBIOS SMB tapisrv unicode bind attempt (netbios.rules) 9860 <-> NETBIOS SMB tapisrv WriteAndX bind attempt (netbios.rules) 9861 <-> NETBIOS SMB tapisrv WriteAndX unicode bind attempt (netbios.rules) 9862 <-> NETBIOS SMB tapisrv alter context attempt (netbios.rules) 9863 <-> NETBIOS SMB tapisrv unicode alter context attempt (netbios.rules) 9864 <-> NETBIOS SMB tapisrv WriteAndX alter context attempt (netbios.rules) 9865 <-> NETBIOS SMB tapisrv WriteAndX unicode alter context attempt (netbios.rules) 9866 <-> NETBIOS SMB-DS tapisrv alter context attempt (netbios.rules) 9867 <-> NETBIOS SMB-DS tapisrv WriteAndX alter context attempt (netbios.rules) 9868 <-> NETBIOS SMB-DS tapisrv unicode alter context attempt (netbios.rules) 9869 <-> NETBIOS SMB-DS tapisrv WriteAndX unicode alter context attempt (netbios.rules) 9870 <-> NETBIOS SMB-DS tapisrv bind attempt (netbios.rules) 9871 <-> NETBIOS SMB-DS tapisrv WriteAndX bind attempt (netbios.rules) 9872 <-> NETBIOS SMB-DS tapisrv unicode bind attempt (netbios.rules) 9873 <-> NETBIOS SMB-DS tapisrv WriteAndX unicode bind attempt (netbios.rules) 9874 <-> NETBIOS SMB tapisrv little endian bind attempt (netbios.rules) 9875 <-> NETBIOS SMB tapisrv WriteAndX little endian bind attempt (netbios.rules) 9876 <-> NETBIOS SMB tapisrv unicode little endian bind attempt (netbios.rules) 9877 <-> NETBIOS SMB tapisrv WriteAndX unicode little endian bind attempt (netbios.rules) 9878 <-> NETBIOS SMB-DS tapisrv little endian bind attempt (netbios.rules) 9879 <-> NETBIOS SMB-DS tapisrv WriteAndX little endian bind attempt (netbios.rules) 9880 <-> NETBIOS SMB-DS tapisrv unicode little endian bind attempt (netbios.rules) 9881 <-> NETBIOS SMB-DS tapisrv WriteAndX unicode little endian bind attempt (netbios.rules) 9882 <-> NETBIOS SMB tapisrv little endian andx alter context attempt (netbios.rules) 9883 <-> NETBIOS SMB tapisrv WriteAndX little endian andx alter context attempt (netbios.rules) 9884 <-> NETBIOS SMB tapisrv unicode little endian andx alter context attempt (netbios.rules) 9885 <-> NETBIOS SMB tapisrv WriteAndX unicode little endian andx alter context attempt (netbios.rules) 9886 <-> NETBIOS SMB-DS tapisrv little endian andx alter context attempt (netbios.rules) 9887 <-> NETBIOS SMB-DS tapisrv WriteAndX little endian andx alter context attempt (netbios.rules) 9888 <-> NETBIOS SMB-DS tapisrv unicode little endian andx alter context attempt (netbios.rules) 9889 <-> NETBIOS SMB-DS tapisrv WriteAndX unicode little endian andx alter context attempt (netbios.rules) 9890 <-> NETBIOS SMB tapisrv andx bind attempt (netbios.rules) 9891 <-> NETBIOS SMB tapisrv unicode andx bind attempt (netbios.rules) 9892 <-> NETBIOS SMB tapisrv WriteAndX andx bind attempt (netbios.rules) 9893 <-> NETBIOS SMB tapisrv WriteAndX unicode andx bind attempt (netbios.rules) 9894 <-> NETBIOS SMB tapisrv andx alter context attempt (netbios.rules) 9895 <-> NETBIOS SMB tapisrv unicode andx alter context attempt (netbios.rules) 9896 <-> NETBIOS SMB tapisrv WriteAndX andx alter context attempt (netbios.rules) 9897 <-> NETBIOS SMB tapisrv WriteAndX unicode andx alter context attempt (netbios.rules) 9898 <-> NETBIOS SMB-DS tapisrv andx alter context attempt (netbios.rules) 9899 <-> NETBIOS SMB-DS tapisrv WriteAndX andx alter context attempt (netbios.rules) 9900 <-> NETBIOS SMB-DS tapisrv unicode andx alter context attempt (netbios.rules) 9901 <-> NETBIOS SMB-DS tapisrv WriteAndX unicode andx alter context attempt (netbios.rules) 9902 <-> NETBIOS SMB-DS tapisrv andx bind attempt (netbios.rules) 9903 <-> NETBIOS SMB-DS tapisrv WriteAndX andx bind attempt (netbios.rules) 9904 <-> NETBIOS SMB-DS tapisrv unicode andx bind attempt (netbios.rules) 9905 <-> NETBIOS SMB-DS tapisrv WriteAndX unicode andx bind attempt (netbios.rules) 9906 <-> NETBIOS SMB tapisrv little endian andx bind attempt (netbios.rules) 9907 <-> NETBIOS SMB tapisrv WriteAndX little endian andx bind attempt (netbios.rules) 9908 <-> NETBIOS SMB tapisrv unicode little endian andx bind attempt (netbios.rules) 9909 <-> NETBIOS SMB tapisrv WriteAndX unicode little endian andx bind attempt (netbios.rules) 9910 <-> NETBIOS SMB-DS tapisrv little endian andx bind attempt (netbios.rules) 9911 <-> NETBIOS SMB-DS tapisrv WriteAndX little endian andx bind attempt (netbios.rules) 9912 <-> NETBIOS SMB-DS tapisrv unicode little endian andx bind attempt (netbios.rules) 9913 <-> NETBIOS SMB-DS tapisrv WriteAndX unicode little endian andx bind attempt (netbios.rules) 9914 <-> NETBIOS SMB-DS v4 tapisrv ClientRequest WriteAndX unicode LSetAppPriority overflow attempt (netbios.rules) 9915 <-> NETBIOS SMB-DS v4 tapisrv ClientRequest unicode little endian LSetAppPriority overflow attempt (netbios.rules) 9916 <-> NETBIOS SMB v4 tapisrv ClientRequest WriteAndX unicode little endian LSetAppPriority overflow attempt (netbios.rules) 9917 <-> NETBIOS SMB-DS v4 tapisrv ClientRequest WriteAndX unicode little endian LSetAppPriority overflow attempt (netbios.rules) 9918 <-> NETBIOS SMB-DS v4 tapisrv ClientRequest little endian LSetAppPriority overflow attempt (netbios.rules) 9919 <-> NETBIOS SMB v4 tapisrv ClientRequest unicode LSetAppPriority overflow attempt (netbios.rules) 9920 <-> NETBIOS SMB-DS v4 tapisrv ClientRequest LSetAppPriority overflow attempt (netbios.rules) 9921 <-> NETBIOS SMB v4 tapisrv ClientRequest WriteAndX little endian LSetAppPriority overflow attempt (netbios.rules) 9922 <-> NETBIOS SMB-DS v4 tapisrv ClientRequest WriteAndX little endian LSetAppPriority overflow attempt (netbios.rules) 9923 <-> NETBIOS SMB v4 tapisrv ClientRequest LSetAppPriority overflow attempt (netbios.rules) 9924 <-> NETBIOS SMB v4 tapisrv ClientRequest WriteAndX unicode LSetAppPriority overflow attempt (netbios.rules) 9925 <-> NETBIOS SMB v4 tapisrv ClientRequest WriteAndX LSetAppPriority overflow attempt (netbios.rules) 9926 <-> NETBIOS SMB-DS v4 tapisrv ClientRequest unicode LSetAppPriority overflow attempt (netbios.rules) 9927 <-> NETBIOS SMB-DS v4 tapisrv ClientRequest WriteAndX LSetAppPriority overflow attempt (netbios.rules) 9928 <-> NETBIOS SMB-DS tapisrv ClientRequest LSetAppPriority overflow attempt (netbios.rules) 9929 <-> NETBIOS SMB v4 tapisrv ClientRequest little endian LSetAppPriority overflow attempt (netbios.rules) 9930 <-> NETBIOS SMB v4 tapisrv ClientRequest unicode little endian LSetAppPriority overflow attempt (netbios.rules) 9931 <-> NETBIOS SMB-DS tapisrv ClientRequest WriteAndX little endian LSetAppPriority overflow attempt (netbios.rules) 9932 <-> NETBIOS SMB-DS tapisrv ClientRequest WriteAndX unicode LSetAppPriority overflow attempt (netbios.rules) 9933 <-> NETBIOS SMB-DS tapisrv ClientRequest WriteAndX unicode little endian LSetAppPriority overflow attempt (netbios.rules) 9934 <-> NETBIOS SMB-DS tapisrv ClientRequest little endian LSetAppPriority overflow attempt (netbios.rules) 9935 <-> NETBIOS SMB tapisrv ClientRequest LSetAppPriority overflow attempt (netbios.rules) 9936 <-> NETBIOS SMB tapisrv ClientRequest WriteAndX unicode LSetAppPriority overflow attempt (netbios.rules) 9937 <-> NETBIOS SMB tapisrv ClientRequest WriteAndX LSetAppPriority overflow attempt (netbios.rules) 9938 <-> NETBIOS SMB tapisrv ClientRequest unicode LSetAppPriority overflow attempt (netbios.rules) 9939 <-> NETBIOS SMB-DS tapisrv ClientRequest unicode LSetAppPriority overflow attempt (netbios.rules) 9940 <-> NETBIOS SMB-DS tapisrv ClientRequest WriteAndX LSetAppPriority overflow attempt (netbios.rules) 9941 <-> NETBIOS SMB tapisrv ClientRequest little endian LSetAppPriority overflow attempt (netbios.rules) 9942 <-> NETBIOS SMB tapisrv ClientRequest WriteAndX little endian LSetAppPriority overflow attempt (netbios.rules) 9943 <-> NETBIOS SMB tapisrv ClientRequest unicode little endian LSetAppPriority overflow attempt (netbios.rules) 9944 <-> NETBIOS SMB tapisrv ClientRequest WriteAndX unicode little endian LSetAppPriority overflow attempt (netbios.rules) 9945 <-> NETBIOS SMB-DS tapisrv ClientRequest unicode little endian LSetAppPriority overflow attempt (netbios.rules) 9946 <-> NETBIOS SMB-DS tapisrv ClientRequest object call LSetAppPriority overflow attempt (netbios.rules) 9947 <-> NETBIOS SMB-DS tapisrv ClientRequest WriteAndX little endian object call LSetAppPriority overflow attempt (netbios.rules) 9948 <-> NETBIOS SMB-DS tapisrv ClientRequest WriteAndX unicode object call LSetAppPriority overflow attempt (netbios.rules) 9949 <-> NETBIOS SMB-DS tapisrv ClientRequest WriteAndX unicode little endian object call LSetAppPriority overflow attempt (netbios.rules) 9950 <-> NETBIOS SMB-DS tapisrv ClientRequest little endian object call LSetAppPriority overflow attempt (netbios.rules) 9951 <-> NETBIOS SMB tapisrv ClientRequest object call LSetAppPriority overflow attempt (netbios.rules) 9952 <-> NETBIOS SMB tapisrv ClientRequest WriteAndX unicode object call LSetAppPriority overflow attempt (netbios.rules) 9953 <-> NETBIOS SMB tapisrv ClientRequest WriteAndX object call LSetAppPriority overflow attempt (netbios.rules) 9954 <-> NETBIOS SMB tapisrv ClientRequest unicode object call LSetAppPriority overflow attempt (netbios.rules) 9955 <-> NETBIOS SMB-DS tapisrv ClientRequest unicode object call LSetAppPriority overflow attempt (netbios.rules) 9956 <-> NETBIOS SMB-DS tapisrv ClientRequest WriteAndX object call LSetAppPriority overflow attempt (netbios.rules) 9957 <-> NETBIOS SMB tapisrv ClientRequest little endian object call LSetAppPriority overflow attempt (netbios.rules) 9958 <-> NETBIOS SMB tapisrv ClientRequest WriteAndX little endian object call LSetAppPriority overflow attempt (netbios.rules) 9959 <-> NETBIOS SMB tapisrv ClientRequest unicode little endian object call LSetAppPriority overflow attempt (netbios.rules) 9960 <-> NETBIOS SMB tapisrv ClientRequest WriteAndX unicode little endian object call LSetAppPriority overflow attempt (netbios.rules) 9961 <-> NETBIOS SMB-DS tapisrv ClientRequest unicode little endian object call LSetAppPriority overflow attempt (netbios.rules) 9962 <-> NETBIOS SMB-DS v4 tapisrv ClientRequest WriteAndX unicode andx LSetAppPriority overflow attempt (netbios.rules) 9963 <-> NETBIOS SMB-DS v4 tapisrv ClientRequest unicode little endian andx LSetAppPriority overflow attempt (netbios.rules) 9964 <-> NETBIOS SMB v4 tapisrv ClientRequest WriteAndX unicode little endian andx LSetAppPriority overflow attempt (netbios.rules) 9965 <-> NETBIOS SMB-DS v4 tapisrv ClientRequest WriteAndX unicode little endian andx LSetAppPriority overflow attempt (netbios.rules) 9966 <-> NETBIOS SMB-DS v4 tapisrv ClientRequest little endian andx LSetAppPriority overflow attempt (netbios.rules) 9967 <-> NETBIOS SMB v4 tapisrv ClientRequest unicode andx LSetAppPriority overflow attempt (netbios.rules) 9968 <-> NETBIOS SMB-DS v4 tapisrv ClientRequest andx LSetAppPriority overflow attempt (netbios.rules) 9969 <-> NETBIOS SMB v4 tapisrv ClientRequest WriteAndX little endian andx LSetAppPriority overflow attempt (netbios.rules) 9970 <-> NETBIOS SMB-DS v4 tapisrv ClientRequest WriteAndX little endian andx LSetAppPriority overflow attempt (netbios.rules) 9971 <-> NETBIOS SMB v4 tapisrv ClientRequest andx LSetAppPriority overflow attempt (netbios.rules) 9972 <-> NETBIOS SMB v4 tapisrv ClientRequest WriteAndX unicode andx LSetAppPriority overflow attempt (netbios.rules) 9973 <-> NETBIOS SMB v4 tapisrv ClientRequest WriteAndX andx LSetAppPriority overflow attempt (netbios.rules) 9974 <-> NETBIOS SMB-DS v4 tapisrv ClientRequest unicode andx LSetAppPriority overflow attempt (netbios.rules) 9975 <-> NETBIOS SMB-DS v4 tapisrv ClientRequest WriteAndX andx LSetAppPriority overflow attempt (netbios.rules) 9976 <-> NETBIOS SMB-DS tapisrv ClientRequest andx LSetAppPriority overflow attempt (netbios.rules) 9977 <-> NETBIOS SMB v4 tapisrv ClientRequest little endian andx LSetAppPriority overflow attempt (netbios.rules) 9978 <-> NETBIOS SMB v4 tapisrv ClientRequest unicode little endian andx LSetAppPriority overflow attempt (netbios.rules) 9979 <-> NETBIOS SMB-DS tapisrv ClientRequest WriteAndX little endian andx LSetAppPriority overflow attempt (netbios.rules) 9980 <-> NETBIOS SMB-DS tapisrv ClientRequest WriteAndX unicode andx LSetAppPriority overflow attempt (netbios.rules) 9981 <-> NETBIOS SMB-DS tapisrv ClientRequest WriteAndX unicode little endian andx LSetAppPriority overflow attempt (netbios.rules) 9982 <-> NETBIOS SMB-DS tapisrv ClientRequest little endian andx LSetAppPriority overflow attempt (netbios.rules) 9983 <-> NETBIOS SMB tapisrv ClientRequest andx LSetAppPriority overflow attempt (netbios.rules) 9984 <-> NETBIOS SMB tapisrv ClientRequest WriteAndX unicode andx LSetAppPriority overflow attempt (netbios.rules) 9985 <-> NETBIOS SMB tapisrv ClientRequest WriteAndX andx LSetAppPriority overflow attempt (netbios.rules) 9986 <-> NETBIOS SMB tapisrv ClientRequest unicode andx LSetAppPriority overflow attempt (netbios.rules) 9987 <-> NETBIOS SMB-DS tapisrv ClientRequest unicode andx LSetAppPriority overflow attempt (netbios.rules) 9988 <-> NETBIOS SMB-DS tapisrv ClientRequest WriteAndX andx LSetAppPriority overflow attempt (netbios.rules) 9989 <-> NETBIOS SMB tapisrv ClientRequest little endian andx LSetAppPriority overflow attempt (netbios.rules) 9990 <-> NETBIOS SMB tapisrv ClientRequest WriteAndX little endian andx LSetAppPriority overflow attempt (netbios.rules) 9991 <-> NETBIOS SMB tapisrv ClientRequest unicode little endian andx LSetAppPriority overflow attempt (netbios.rules) 9992 <-> NETBIOS SMB tapisrv ClientRequest WriteAndX unicode little endian andx LSetAppPriority overflow attempt (netbios.rules) 9993 <-> NETBIOS SMB-DS tapisrv ClientRequest unicode little endian andx LSetAppPriority overflow attempt (netbios.rules) 9994 <-> NETBIOS SMB-DS tapisrv ClientRequest andx object call LSetAppPriority overflow attempt (netbios.rules) 9995 <-> NETBIOS SMB-DS tapisrv ClientRequest WriteAndX little endian andx object call LSetAppPriority overflow attempt (netbios.rules) 9996 <-> NETBIOS SMB-DS tapisrv ClientRequest WriteAndX unicode andx object call LSetAppPriority overflow attempt (netbios.rules) 9997 <-> NETBIOS SMB-DS tapisrv ClientRequest WriteAndX unicode little endian andx object call LSetAppPriority overflow attempt (netbios.rules) 9998 <-> NETBIOS SMB-DS tapisrv ClientRequest little endian andx object call LSetAppPriority overflow attempt (netbios.rules) 9999 <-> NETBIOS SMB tapisrv ClientRequest andx object call LSetAppPriority overflow attempt (netbios.rules) 10000 <-> NETBIOS SMB tapisrv ClientRequest WriteAndX unicode andx object call LSetAppPriority overflow attempt (netbios.rules) 10001 <-> NETBIOS SMB tapisrv ClientRequest WriteAndX andx object call LSetAppPriority overflow attempt (netbios.rules) 10002 <-> NETBIOS SMB tapisrv ClientRequest unicode andx object call LSetAppPriority overflow attempt (netbios.rules) 10003 <-> NETBIOS SMB-DS tapisrv ClientRequest unicode andx object call LSetAppPriority overflow attempt (netbios.rules) 10004 <-> NETBIOS SMB-DS tapisrv ClientRequest WriteAndX andx object call LSetAppPriority overflow attempt (netbios.rules) 10005 <-> NETBIOS SMB tapisrv ClientRequest little endian andx object call LSetAppPriority overflow attempt (netbios.rules) 10006 <-> NETBIOS SMB tapisrv ClientRequest WriteAndX little endian andx object call LSetAppPriority overflow attempt (netbios.rules) 10007 <-> NETBIOS SMB tapisrv ClientRequest unicode little endian andx object call LSetAppPriority overflow attempt (netbios.rules) 10008 <-> NETBIOS SMB tapisrv ClientRequest WriteAndX unicode little endian andx object call LSetAppPriority overflow attempt (netbios.rules) 10009 <-> NETBIOS SMB-DS tapisrv ClientRequest unicode little endian andx object call LSetAppPriority overflow attempt (netbios.rules) 10010 <-> EXPLOIT Putty Server key exchange buffer overflow attempt (exploit.rules) 10011 <-> IMAP Novell NetMail APPEND command buffer overflow attempt (imap.rules) 10012 <-> SMTP Microsoft Outlook VEVENT non-TZID overflow attempt (smtp.rules) 10013 <-> WEB-CLIENT CCRP FolderTreeView ActiveX clsid access (web-client.rules) 10014 <-> WEB-CLIENT CCRP FolderTreeView ActiveX clsid unicode access (web-client.rules) 10015 <-> WEB-CLIENT Oracle ORADC ActiveX clsid access (web-client.rules) 10016 <-> WEB-CLIENT Oracle ORADC ActiveX clsid unicode access (web-client.rules) 10017 <-> WEB-CLIENT Oracle ORADC ActiveX function call access (web-client.rules) 10018 <-> NETBIOS DCERPC DIRECT v4 brightstor-arc ReserveGroup attempt (netbios.rules) 10019 <-> NETBIOS DCERPC DIRECT brightstor-arc ReserveGroup attempt (netbios.rules) 10020 <-> NETBIOS DCERPC DIRECT v4 brightstor-arc ReserveGroup little endian attempt (netbios.rules) 10021 <-> NETBIOS DCERPC DIRECT brightstor-arc ReserveGroup little endian attempt (netbios.rules) 10022 <-> NETBIOS DCERPC DIRECT brightstor-arc ReserveGroup object call attempt (netbios.rules) 10023 <-> NETBIOS DCERPC DIRECT brightstor-arc ReserveGroup little endian object call attempt (netbios.rules) 10024 <-> NETBIOS DCERPC DIRECT v4 brightstor-arc ClientDBMiniAgentClose little endian attempt (netbios.rules) 10025 <-> NETBIOS DCERPC DIRECT v4 brightstor-arc ClientDBMiniAgentClose attempt (netbios.rules) 10026 <-> NETBIOS DCERPC DIRECT brightstor-arc ClientDBMiniAgentClose attempt (netbios.rules) 10027 <-> NETBIOS DCERPC DIRECT brightstor-arc ClientDBMiniAgentClose little endian attempt (netbios.rules) 10028 <-> NETBIOS DCERPC DIRECT brightstor-arc ClientDBMiniAgentClose object call attempt (netbios.rules) 10029 <-> NETBIOS DCERPC DIRECT brightstor-arc ClientDBMiniAgentClose little endian object call attempt (netbios.rules) 10030 <-> NETBIOS DCERPC DIRECT v4 brightstor QSIGetQueuePath_Function_45 attempt (netbios.rules) 10031 <-> NETBIOS DCERPC DIRECT brightstor QSIGetQueuePath_Function_45 little endian attempt (netbios.rules) 10032 <-> NETBIOS DCERPC DIRECT brightstor QSIGetQueuePath_Function_45 attempt (netbios.rules) 10033 <-> NETBIOS DCERPC DIRECT v4 brightstor QSIGetQueuePath_Function_45 little endian attempt (netbios.rules) 10034 <-> NETBIOS DCERPC DIRECT brightstor QSIGetQueuePath_Function_45 little endian object call attempt (netbios.rules) 10035 <-> NETBIOS DCERPC DIRECT brightstor QSIGetQueuePath_Function_45 object call attempt (netbios.rules) 10036 <-> NETBIOS DCERPC DIRECT brightstor ASRemotePFC overflow attempt (netbios.rules) 10037 <-> NETBIOS DCERPC DIRECT brightstor ASRemotePFC little endian overflow attempt (netbios.rules) 10038 <-> NETBIOS DCERPC DIRECT v4 brightstor ASRemotePFC little endian overflow attempt (netbios.rules) 10039 <-> NETBIOS DCERPC DIRECT v4 brightstor ASRemotePFC overflow attempt (netbios.rules) 10040 <-> NETBIOS DCERPC DIRECT brightstor ASRemotePFC object call overflow attempt (netbios.rules) 10041 <-> NETBIOS DCERPC DIRECT brightstor ASRemotePFC little endian object call overflow attempt (netbios.rules) 10042 <-> NETBIOS DCERPC DIRECT brightstor-arc2 alter context attempt (netbios.rules) 10043 <-> NETBIOS DCERPC DIRECT brightstor-arc2 little endian alter context attempt (netbios.rules) 10044 <-> NETBIOS DCERPC DIRECT brightstor-arc2 bind attempt (netbios.rules) 10045 <-> NETBIOS DCERPC DIRECT brightstor-arc2 little endian bind attempt (netbios.rules) 10046 <-> NETBIOS DCERPC DIRECT brightstor-arc2 alter context attempt (netbios.rules) 10047 <-> NETBIOS DCERPC DIRECT brightstor-arc2 little endian alter context attempt (netbios.rules) 10048 <-> NETBIOS DCERPC DIRECT brightstor-arc2 bind attempt (netbios.rules) 10049 <-> NETBIOS DCERPC DIRECT brightstor-arc2 little endian bind attempt (netbios.rules) 10050 <-> NETBIOS DCERPC DIRECT brightstor-arc2 ASDBLoginToComputer overflow attempt (netbios.rules) 10051 <-> NETBIOS DCERPC DIRECT v4 brightstor-arc2 ASDBLoginToComputer little endian overflow attempt (netbios.rules) 10052 <-> NETBIOS DCERPC DIRECT v4 brightstor-arc2 ASDBLoginToComputer overflow attempt (netbios.rules) 10053 <-> NETBIOS DCERPC DIRECT brightstor-arc2 ASDBLoginToComputer little endian overflow attempt (netbios.rules) 10054 <-> NETBIOS DCERPC DIRECT brightstor-arc2 ASDBLoginToComputer object call overflow attempt (netbios.rules) 10055 <-> NETBIOS DCERPC DIRECT brightstor-arc2 ASDBLoginToComputer little endian object call overflow attempt (netbios.rules) 10056 <-> NETBIOS DCERPC DIRECT v4 brightstor-arc2 ASDBLoginToComputer overflow attempt (netbios.rules) 10057 <-> NETBIOS DCERPC DIRECT brightstor-arc2 ASDBLoginToComputer little endian overflow attempt (netbios.rules) 10058 <-> NETBIOS DCERPC DIRECT v4 brightstor-arc2 ASDBLoginToComputer little endian overflow attempt (netbios.rules) 10059 <-> NETBIOS DCERPC DIRECT brightstor-arc2 ASDBLoginToComputer overflow attempt (netbios.rules) 10060 <-> NETBIOS DCERPC DIRECT brightstor-arc2 ASDBLoginToComputer little endian object call overflow attempt (netbios.rules) 10061 <-> NETBIOS DCERPC DIRECT brightstor-arc2 ASDBLoginToComputer object call overflow attempt (netbios.rules) 10062 <-> WEB-CLIENT Java Virtual Machine malformed GIF buffer overflow attempt (web-client.rules) 10063 <-> WEB-CLIENT Firefox query interface suspicious function call access attempt (web-client.rules) 10064 <-> EXPLOIT Peercast URL Parameter overflow attempt (exploit.rules) 10065 <-> SPECIFIC-THREATS Trojan Peacomm smtp propagation detection (specific-threats.rules) 10066 <-> SPECIFIC-THREATS Trojan Peacomm smtp propagation detection (specific-threats.rules) 10067 <-> SPECIFIC-THREATS Trojan Peacomm smtp propagation detection (specific-threats.rules) 10068 <-> SPECIFIC-THREATS Trojan Peacomm smtp propagation detection (specific-threats.rules) 10069 <-> SPECIFIC-THREATS Trojan Peacomm smtp propagation detection (specific-threats.rules) 10070 <-> SPECIFIC-THREATS Trojan Peacomm smtp propagation detection (specific-threats.rules) 10071 <-> SPECIFIC-THREATS Trojan Peacomm smtp propagation detection (specific-threats.rules) 10072 <-> SPECIFIC-THREATS Trojan Peacomm smtp propagation detection (specific-threats.rules) 10073 <-> SPECIFIC-THREATS Trojan Peacomm smtp propagation detection (specific-threats.rules) 10074 <-> SPECIFIC-THREATS Trojan Peacomm smtp propagation detection (specific-threats.rules) 10075 <-> SPECIFIC-THREATS Trojan Peacomm smtp propagation detection (specific-threats.rules) 10076 <-> SPECIFIC-THREATS Trojan Peacomm smtp propagation detection (specific-threats.rules) 10077 <-> SPECIFIC-THREATS Trojan Peacomm smtp propagation detection (specific-threats.rules) 10078 <-> SPECIFIC-THREATS W32.Nuwar.AY smtp propagation detection (specific-threats.rules) 10079 <-> SPECIFIC-THREATS W32.Nuwar.AY smtp propagation detection (specific-threats.rules) 10080 <-> SPECIFIC-THREATS W32.Nuwar.AY smtp propagation detection (specific-threats.rules) 10081 <-> SPECIFIC-THREATS W32.Nuwar.AY smtp propagation detection (specific-threats.rules) 10082 <-> SPECIFIC-THREATS W32.Nuwar.AY smtp propagation detection (specific-threats.rules) 10083 <-> SPECIFIC-THREATS W32.Nuwar.AY smtp propagation detection (specific-threats.rules) Updated rules: 1734 <-> FTP USER overflow attempt (ftp.rules) 1972 <-> FTP PASS overflow attempt (ftp.rules) 8705 <-> SMTP YPOPS buffer overflow attempt (smtp.rules) 8706 <-> EXPLOIT YPOPS buffer overflow attempt (exploit.rules) 8709 <-> DNS Windows NAT helper components tcp denial of service attempt (dns.rules) 9132 <-> NETBIOS SMB netware_cs NwrOpenEnumNdsStubTrees_Any WriteAndX unicode little endian overflow attempt (netbios.rules) 9133 <-> NETBIOS SMB-DS netware_cs NwrOpenEnumNdsStubTrees_Any unicode overflow attempt (netbios.rules) 9134 <-> NETBIOS SMB-DS netware_cs NwrOpenEnumNdsStubTrees_Any unicode object call overflow attempt (netbios.rules) 9135 <-> NETBIOS SMB-DS netware_cs NwrOpenEnumNdsStubTrees_Any object call overflow attempt (netbios.rules) 9136 <-> NETBIOS SMB netware_cs NwrOpenEnumNdsStubTrees_Any WriteAndX object call overflow attempt (netbios.rules) 9137 <-> NETBIOS SMB-DS netware_cs NwrOpenEnumNdsStubTrees_Any WriteAndX unicode little endian object call overflow attempt (netbios.rules) 9138 <-> NETBIOS SMB netware_cs NwrOpenEnumNdsStubTrees_Any unicode object call overflow attempt (netbios.rules) 9140 <-> NETBIOS SMB netware_cs NwrOpenEnumNdsStubTrees_Any WriteAndX unicode object call overflow attempt (netbios.rules) 9143 <-> NETBIOS SMB-DS netware_cs NwrOpenEnumNdsStubTrees_Any WriteAndX overflow attempt (netbios.rules) 9145 <-> NETBIOS SMB-DS netware_cs NwrOpenEnumNdsStubTrees_Any WriteAndX little endian overflow attempt (netbios.rules) 9146 <-> NETBIOS SMB netware_cs NwrOpenEnumNdsStubTrees_Any WriteAndX unicode overflow attempt (netbios.rules) 9147 <-> NETBIOS SMB-DS netware_cs NwrOpenEnumNdsStubTrees_Any little endian overflow attempt (netbios.rules) 9148 <-> NETBIOS SMB netware_cs NwrOpenEnumNdsStubTrees_Any overflow attempt (netbios.rules) 9149 <-> NETBIOS SMB netware_cs NwrOpenEnumNdsStubTrees_Any unicode little endian overflow attempt (netbios.rules) 9150 <-> NETBIOS SMB-DS netware_cs NwrOpenEnumNdsStubTrees_Any WriteAndX unicode overflow attempt (netbios.rules) 9151 <-> NETBIOS SMB-DS netware_cs NwrOpenEnumNdsStubTrees_Any unicode little endian overflow attempt (netbios.rules) 9157 <-> NETBIOS SMB netware_cs NwrOpenEnumNdsStubTrees_Any WriteAndX little endian overflow attempt (netbios.rules) 9158 <-> NETBIOS SMB netware_cs NwrOpenEnumNdsStubTrees_Any little endian overflow attempt (netbios.rules) 9159 <-> NETBIOS SMB-DS netware_cs NwrOpenEnumNdsStubTrees_Any overflow attempt (netbios.rules) 9160 <-> NETBIOS SMB netware_cs NwrOpenEnumNdsStubTrees_Any WriteAndX overflow attempt (netbios.rules) 9161 <-> NETBIOS SMB netware_cs NwrOpenEnumNdsStubTrees_Any unicode overflow attempt (netbios.rules) 9162 <-> NETBIOS SMB-DS netware_cs NwrOpenEnumNdsStubTrees_Any WriteAndX unicode little endian overflow attempt (netbios.rules) 9170 <-> NETBIOS SMB-DS netware_cs NwrOpenEnumNdsStubTrees_Any WriteAndX object call overflow attempt (netbios.rules) 9171 <-> NETBIOS SMB-DS netware_cs NwrOpenEnumNdsStubTrees_Any WriteAndX little endian object call overflow attempt (netbios.rules) 9172 <-> NETBIOS SMB netware_cs NwrOpenEnumNdsStubTrees_Any object call overflow attempt (netbios.rules) 9173 <-> NETBIOS SMB-DS netware_cs NwrOpenEnumNdsStubTrees_Any little endian object call overflow attempt (netbios.rules) 9174 <-> NETBIOS SMB-DS netware_cs NwrOpenEnumNdsStubTrees_Any WriteAndX unicode object call overflow attempt (netbios.rules) 9175 <-> NETBIOS SMB netware_cs NwrOpenEnumNdsStubTrees_Any unicode little endian object call overflow attempt (netbios.rules) 9176 <-> NETBIOS SMB-DS netware_cs NwrOpenEnumNdsStubTrees_Any unicode little endian object call overflow attempt (netbios.rules) 9177 <-> NETBIOS SMB netware_cs NwrOpenEnumNdsStubTrees_Any WriteAndX unicode little endian object call overflow attempt (netbios.rules) 9178 <-> NETBIOS SMB netware_cs NwrOpenEnumNdsStubTrees_Any little endian object call overflow attempt (netbios.rules) 9179 <-> NETBIOS SMB netware_cs NwrOpenEnumNdsStubTrees_Any WriteAndX little endian object call overflow attempt (netbios.rules) 9180 <-> NETBIOS SMB netware_cs NwrOpenEnumNdsStubTrees_Any WriteAndX unicode little endian andx overflow attempt (netbios.rules) 9181 <-> NETBIOS SMB-DS netware_cs NwrOpenEnumNdsStubTrees_Any unicode andx overflow attempt (netbios.rules) 9182 <-> NETBIOS SMB-DS netware_cs NwrOpenEnumNdsStubTrees_Any unicode andx object call overflow attempt (netbios.rules) 9183 <-> NETBIOS SMB-DS netware_cs NwrOpenEnumNdsStubTrees_Any andx object call overflow attempt (netbios.rules) 9184 <-> NETBIOS SMB netware_cs NwrOpenEnumNdsStubTrees_Any WriteAndX andx object call overflow attempt (netbios.rules) 9185 <-> NETBIOS SMB-DS netware_cs NwrOpenEnumNdsStubTrees_Any WriteAndX unicode little endian andx object call overflow attempt (netbios.rules) 9186 <-> NETBIOS SMB netware_cs NwrOpenEnumNdsStubTrees_Any unicode andx object call overflow attempt (netbios.rules) 9188 <-> NETBIOS SMB netware_cs NwrOpenEnumNdsStubTrees_Any WriteAndX unicode andx object call overflow attempt (netbios.rules) 9191 <-> NETBIOS SMB-DS netware_cs NwrOpenEnumNdsStubTrees_Any WriteAndX andx overflow attempt (netbios.rules) 9193 <-> NETBIOS SMB-DS netware_cs NwrOpenEnumNdsStubTrees_Any WriteAndX little endian andx overflow attempt (netbios.rules) 9194 <-> NETBIOS SMB netware_cs NwrOpenEnumNdsStubTrees_Any WriteAndX unicode andx overflow attempt (netbios.rules) 9195 <-> NETBIOS SMB-DS netware_cs NwrOpenEnumNdsStubTrees_Any little endian andx overflow attempt (netbios.rules) 9196 <-> NETBIOS SMB netware_cs NwrOpenEnumNdsStubTrees_Any andx overflow attempt (netbios.rules) 9197 <-> NETBIOS SMB netware_cs NwrOpenEnumNdsStubTrees_Any unicode little endian andx overflow attempt (netbios.rules) 9198 <-> NETBIOS SMB-DS netware_cs NwrOpenEnumNdsStubTrees_Any WriteAndX unicode andx overflow attempt (netbios.rules) 9199 <-> NETBIOS SMB-DS netware_cs NwrOpenEnumNdsStubTrees_Any unicode little endian andx overflow attempt (netbios.rules) 9205 <-> NETBIOS SMB netware_cs NwrOpenEnumNdsStubTrees_Any WriteAndX little endian andx overflow attempt (netbios.rules) 9206 <-> NETBIOS SMB netware_cs NwrOpenEnumNdsStubTrees_Any little endian andx overflow attempt (netbios.rules) 9207 <-> NETBIOS SMB-DS netware_cs NwrOpenEnumNdsStubTrees_Any andx overflow attempt (netbios.rules) 9208 <-> NETBIOS SMB netware_cs NwrOpenEnumNdsStubTrees_Any WriteAndX andx overflow attempt (netbios.rules) 9209 <-> NETBIOS SMB netware_cs NwrOpenEnumNdsStubTrees_Any unicode andx overflow attempt (netbios.rules) 9210 <-> NETBIOS SMB-DS netware_cs NwrOpenEnumNdsStubTrees_Any WriteAndX unicode little endian andx overflow attempt (netbios.rules) 9218 <-> NETBIOS SMB-DS netware_cs NwrOpenEnumNdsStubTrees_Any WriteAndX andx object call overflow attempt (netbios.rules) 9219 <-> NETBIOS SMB-DS netware_cs NwrOpenEnumNdsStubTrees_Any WriteAndX little endian andx object call overflow attempt (netbios.rules) 9220 <-> NETBIOS SMB netware_cs NwrOpenEnumNdsStubTrees_Any andx object call overflow attempt (netbios.rules) 9221 <-> NETBIOS SMB-DS netware_cs NwrOpenEnumNdsStubTrees_Any little endian andx object call overflow attempt (netbios.rules) 9222 <-> NETBIOS SMB-DS netware_cs NwrOpenEnumNdsStubTrees_Any WriteAndX unicode andx object call overflow attempt (netbios.rules) 9223 <-> NETBIOS SMB netware_cs NwrOpenEnumNdsStubTrees_Any unicode little endian andx object call overflow attempt (netbios.rules) 9224 <-> NETBIOS SMB-DS netware_cs NwrOpenEnumNdsStubTrees_Any unicode little endian andx object call overflow attempt (netbios.rules) 9225 <-> NETBIOS SMB netware_cs NwrOpenEnumNdsStubTrees_Any WriteAndX unicode little endian andx object call overflow attempt (netbios.rules) 9226 <-> NETBIOS SMB netware_cs NwrOpenEnumNdsStubTrees_Any little endian andx object call overflow attempt (netbios.rules) 9227 <-> NETBIOS SMB netware_cs NwrOpenEnumNdsStubTrees_Any WriteAndX little endian andx object call overflow attempt (netbios.rules) 9228 <-> NETBIOS SMB-DS netware_cs NwGetConnectionInformation unicode little endian overflow attempt (netbios.rules) 9229 <-> NETBIOS SMB-DS netware_cs NwGetConnectionInformation object call overflow attempt (netbios.rules) 9230 <-> NETBIOS SMB netware_cs NwGetConnectionInformation object call overflow attempt (netbios.rules) 9231 <-> NETBIOS SMB netware_cs NwGetConnectionInformation unicode little endian object call overflow attempt (netbios.rules) 9232 <-> NETBIOS SMB netware_cs NwGetConnectionInformation WriteAndX unicode little endian object call overflow attempt (netbios.rules) 9233 <-> NETBIOS SMB netware_cs NwGetConnectionInformation little endian object call overflow attempt (netbios.rules) 9234 <-> NETBIOS SMB-DS netware_cs NwGetConnectionInformation WriteAndX little endian object call overflow attempt (netbios.rules) 9235 <-> NETBIOS SMB-DS netware_cs NwGetConnectionInformation WriteAndX unicode object call overflow attempt (netbios.rules) 9236 <-> NETBIOS SMB netware_cs NwGetConnectionInformation WriteAndX unicode object call overflow attempt (netbios.rules) 9237 <-> NETBIOS SMB-DS netware_cs NwGetConnectionInformation WriteAndX object call overflow attempt (netbios.rules) 9238 <-> NETBIOS SMB netware_cs NwGetConnectionInformation WriteAndX object call overflow attempt (netbios.rules) 9239 <-> NETBIOS SMB netware_cs NwGetConnectionInformation unicode object call overflow attempt (netbios.rules) 9242 <-> NETBIOS SMB-DS netware_cs NwGetConnectionInformation WriteAndX overflow attempt (netbios.rules) 9249 <-> NETBIOS SMB-DS netware_cs NwGetConnectionInformation little endian overflow attempt (netbios.rules) 9251 <-> NETBIOS SMB-DS netware_cs NwGetConnectionInformation WriteAndX unicode little endian overflow attempt (netbios.rules) 9257 <-> NETBIOS SMB netware_cs NwGetConnectionInformation WriteAndX little endian overflow attempt (netbios.rules) 9258 <-> NETBIOS SMB-DS netware_cs NwGetConnectionInformation unicode overflow attempt (netbios.rules) 9261 <-> NETBIOS SMB netware_cs NwGetConnectionInformation unicode little endian overflow attempt (netbios.rules) 9262 <-> NETBIOS SMB netware_cs NwGetConnectionInformation WriteAndX unicode little endian overflow attempt (netbios.rules) 9263 <-> NETBIOS SMB-DS netware_cs NwGetConnectionInformation WriteAndX unicode overflow attempt (netbios.rules) 9264 <-> NETBIOS SMB netware_cs NwGetConnectionInformation little endian overflow attempt (netbios.rules) 9265 <-> NETBIOS SMB netware_cs NwGetConnectionInformation WriteAndX unicode overflow attempt (netbios.rules) 9266 <-> NETBIOS SMB-DS netware_cs NwGetConnectionInformation WriteAndX little endian overflow attempt (netbios.rules) 9267 <-> NETBIOS SMB-DS netware_cs NwGetConnectionInformation overflow attempt (netbios.rules) 9268 <-> NETBIOS SMB netware_cs NwGetConnectionInformation WriteAndX overflow attempt (netbios.rules) 9269 <-> NETBIOS SMB netware_cs NwGetConnectionInformation unicode overflow attempt (netbios.rules) 9270 <-> NETBIOS SMB netware_cs NwGetConnectionInformation overflow attempt (netbios.rules) 9271 <-> NETBIOS SMB-DS netware_cs NwGetConnectionInformation little endian object call overflow attempt (netbios.rules) 9272 <-> NETBIOS SMB-DS netware_cs NwGetConnectionInformation WriteAndX unicode little endian object call overflow attempt (netbios.rules) 9273 <-> NETBIOS SMB-DS netware_cs NwGetConnectionInformation unicode little endian object call overflow attempt (netbios.rules) 9274 <-> NETBIOS SMB-DS netware_cs NwGetConnectionInformation unicode object call overflow attempt (netbios.rules) 9275 <-> NETBIOS SMB netware_cs NwGetConnectionInformation WriteAndX little endian object call overflow attempt (netbios.rules) 9276 <-> NETBIOS SMB-DS netware_cs NwGetConnectionInformation unicode little endian andx overflow attempt (netbios.rules) 9277 <-> NETBIOS SMB-DS netware_cs NwGetConnectionInformation andx object call overflow attempt (netbios.rules) 9278 <-> NETBIOS SMB netware_cs NwGetConnectionInformation andx object call overflow attempt (netbios.rules) 9279 <-> NETBIOS SMB netware_cs NwGetConnectionInformation unicode little endian andx object call overflow attempt (netbios.rules) 9280 <-> NETBIOS SMB netware_cs NwGetConnectionInformation WriteAndX unicode little endian andx object call overflow attempt (netbios.rules) 9281 <-> NETBIOS SMB netware_cs NwGetConnectionInformation little endian andx object call overflow attempt (netbios.rules) 9282 <-> NETBIOS SMB-DS netware_cs NwGetConnectionInformation WriteAndX little endian andx object call overflow attempt (netbios.rules) 9283 <-> NETBIOS SMB-DS netware_cs NwGetConnectionInformation WriteAndX unicode andx object call overflow attempt (netbios.rules) 9284 <-> NETBIOS SMB netware_cs NwGetConnectionInformation WriteAndX unicode andx object call overflow attempt (netbios.rules) 9285 <-> NETBIOS SMB-DS netware_cs NwGetConnectionInformation WriteAndX andx object call overflow attempt (netbios.rules) 9286 <-> NETBIOS SMB netware_cs NwGetConnectionInformation WriteAndX andx object call overflow attempt (netbios.rules) 9287 <-> NETBIOS SMB netware_cs NwGetConnectionInformation unicode andx object call overflow attempt (netbios.rules) 9290 <-> NETBIOS SMB-DS netware_cs NwGetConnectionInformation WriteAndX andx overflow attempt (netbios.rules) 9297 <-> NETBIOS SMB-DS netware_cs NwGetConnectionInformation little endian andx overflow attempt (netbios.rules) 9299 <-> NETBIOS SMB-DS netware_cs NwGetConnectionInformation WriteAndX unicode little endian andx overflow attempt (netbios.rules) 9305 <-> NETBIOS SMB netware_cs NwGetConnectionInformation WriteAndX little endian andx overflow attempt (netbios.rules) 9306 <-> NETBIOS SMB-DS netware_cs NwGetConnectionInformation unicode andx overflow attempt (netbios.rules) 9309 <-> NETBIOS SMB netware_cs NwGetConnectionInformation unicode little endian andx overflow attempt (netbios.rules) 9310 <-> NETBIOS SMB netware_cs NwGetConnectionInformation WriteAndX unicode little endian andx overflow attempt (netbios.rules) 9311 <-> NETBIOS SMB-DS netware_cs NwGetConnectionInformation WriteAndX unicode andx overflow attempt (netbios.rules) 9312 <-> NETBIOS SMB netware_cs NwGetConnectionInformation little endian andx overflow attempt (netbios.rules) 9313 <-> NETBIOS SMB netware_cs NwGetConnectionInformation WriteAndX unicode andx overflow attempt (netbios.rules) 9314 <-> NETBIOS SMB-DS netware_cs NwGetConnectionInformation WriteAndX little endian andx overflow attempt (netbios.rules) 9315 <-> NETBIOS SMB-DS netware_cs NwGetConnectionInformation andx overflow attempt (netbios.rules) 9316 <-> NETBIOS SMB netware_cs NwGetConnectionInformation WriteAndX andx overflow attempt (netbios.rules) 9317 <-> NETBIOS SMB netware_cs NwGetConnectionInformation unicode andx overflow attempt (netbios.rules) 9318 <-> NETBIOS SMB netware_cs NwGetConnectionInformation andx overflow attempt (netbios.rules) 9319 <-> NETBIOS SMB-DS netware_cs NwGetConnectionInformation little endian andx object call overflow attempt (netbios.rules) 9320 <-> NETBIOS SMB-DS netware_cs NwGetConnectionInformation WriteAndX unicode little endian andx object call overflow attempt (netbios.rules) 9321 <-> NETBIOS SMB-DS netware_cs NwGetConnectionInformation unicode little endian andx object call overflow attempt (netbios.rules) 9322 <-> NETBIOS SMB-DS netware_cs NwGetConnectionInformation unicode andx object call overflow attempt (netbios.rules) 9323 <-> NETBIOS SMB netware_cs NwGetConnectionInformation WriteAndX little endian andx object call overflow attempt (netbios.rules) 9441 <-> NETBIOS DCERPC DIRECT v4 brightstor QSIGetQueuePath overflow attempt (netbios.rules) 9442 <-> NETBIOS DCERPC DIRECT v4 brightstor QSIGetQueuePath little endian overflow attempt (netbios.rules) 9443 <-> NETBIOS DCERPC DIRECT brightstor QSIGetQueuePath little endian overflow attempt (netbios.rules) 9444 <-> NETBIOS DCERPC DIRECT brightstor QSIGetQueuePath overflow attempt (netbios.rules) 9445 <-> NETBIOS DCERPC DIRECT brightstor QSIGetQueuePath little endian object call overflow attempt (netbios.rules) 9446 <-> NETBIOS DCERPC DIRECT brightstor QSIGetQueuePath object call overflow attempt (netbios.rules) 9806 <-> NETBIOS DCERPC DIRECT v4 brightstor-arc GetGroupStatus little endian overflow attempt (netbios.rules) 9807 <-> NETBIOS DCERPC DIRECT brightstor-arc GetGroupStatus little endian overflow attempt (netbios.rules) 9808 <-> NETBIOS DCERPC DIRECT v4 brightstor-arc GetGroupStatus overflow attempt (netbios.rules) 9809 <-> NETBIOS DCERPC DIRECT brightstor-arc GetGroupStatus overflow attempt (netbios.rules) 9810 <-> NETBIOS DCERPC DIRECT brightstor-arc GetGroupStatus little endian object call overflow attempt (netbios.rules) 9811 <-> NETBIOS DCERPC DIRECT brightstor-arc GetGroupStatus object call overflow attempt (netbios.rules) 9841 <-> SMTP Microsoft Outlook VEVENT overflow attempt (smtp.rules) 9848 <-> WEB-CLIENT Vector Markup Language recolorinfo tag numfills parameter buffer overflow attempt (web-client.rules) 9849 <-> WEB-CLIENT Vector Markup Language recolorinfo tag numcolors parameter buffer overflow attempt (web-client.rules)
