Sourcefire VRT Update
Date: 2007-04-17
This is the complete list of rules modified and added in the Sourcefire VRT Certified rule pack.
The format of the file is:
sid - Message (rule group)
Updated rules: 10514 <-> NETBIOS SMB-DS dns unicode little endian alter context attempt (netbios.rules) 10515 <-> NETBIOS SMB-DS dns alter context attempt (netbios.rules) 10516 <-> NETBIOS SMB-DS dns WriteAndX alter context attempt (netbios.rules) 10517 <-> NETBIOS SMB-DS dns little endian alter context attempt (netbios.rules) 10518 <-> NETBIOS SMB-DS v4 dns R_DnssrvEnumRecords WriteAndX little endian andx overflow attempt (netbios.rules) 10519 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords WriteAndX andx overflow attempt (netbios.rules) 10520 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords andx overflow attempt (netbios.rules) 10521 <-> NETBIOS SMB-DS v4 dns R_DnssrvEnumRecords unicode little endian andx overflow attempt (netbios.rules) 10522 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords WriteAndX little endian andx overflow attempt (netbios.rules) 10523 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords WriteAndX unicode little endian andx overflow attempt (netbios.rules) 10529 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 WriteAndX andx object call overflow attempt (netbios.rules) 10530 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 WriteAndX unicode andx object call overflow attempt (netbios.rules) 10531 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 WriteAndX unicode object call overflow attempt (netbios.rules) 10536 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 WriteAndX little endian overflow attempt (netbios.rules) 10537 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 WriteAndX object call overflow attempt (netbios.rules) 10542 <-> NETBIOS SMB-DS v4 dns R_DnssrvUpdateRecord2 WriteAndX little endian overflow attempt (netbios.rules) 10545 <-> NETBIOS SMB-DS v4 dns R_DnssrvUpdateRecord2 overflow attempt (netbios.rules) 10550 <-> NETBIOS DCERPC DIRECT v4 dns R_DnssrvUpdateRecord2 overflow attempt (netbios.rules) 10552 <-> NETBIOS SMB-DS v4 dns R_DnssrvUpdateRecord2 WriteAndX andx overflow attempt (netbios.rules) 10555 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 WriteAndX unicode little endian object call overflow attempt (netbios.rules) 10558 <-> NETBIOS DCERPC DIRECT dns R_DnssrvUpdateRecord2 object call overflow attempt (netbios.rules) 10560 <-> NETBIOS DCERPC DIRECT dns R_DnssrvUpdateRecord2 little endian object call overflow attempt (netbios.rules) 10566 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 unicode little endian andx overflow attempt (netbios.rules) 10568 <-> NETBIOS SMB-DS v4 dns R_DnssrvUpdateRecord2 unicode little endian andx overflow attempt (netbios.rules) 10572 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 WriteAndX little endian andx overflow attempt (netbios.rules) 10573 <-> NETBIOS DCERPC DIRECT v4 dns R_DnssrvUpdateRecord2 little endian overflow attempt (netbios.rules) 10574 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 WriteAndX unicode andx overflow attempt (netbios.rules) 10577 <-> NETBIOS SMB-DS v4 dns R_DnssrvUpdateRecord2 WriteAndX unicode little endian andx overflow attempt (netbios.rules) 10580 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 WriteAndX overflow attempt (netbios.rules) 10581 <-> NETBIOS SMB-DS v4 dns R_DnssrvUpdateRecord2 WriteAndX unicode little endian overflow attempt (netbios.rules) 10586 <-> NETBIOS SMB-DS v4 dns R_DnssrvUpdateRecord2 unicode overflow attempt (netbios.rules) 10587 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 unicode little endian overflow attempt (netbios.rules) 10589 <-> NETBIOS SMB-DS v4 dns R_DnssrvUpdateRecord2 WriteAndX overflow attempt (netbios.rules) 10592 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 little endian overflow attempt (netbios.rules) 10601 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 unicode andx object call overflow attempt (netbios.rules) 10602 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 WriteAndX little endian andx object call overflow attempt (netbios.rules) 10603 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 WriteAndX little endian object call overflow attempt (netbios.rules) 10608 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 overflow attempt (netbios.rules) 10609 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 unicode object call overflow attempt (netbios.rules) 10614 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 object call overflow attempt (netbios.rules) 10617 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 WriteAndX unicode little endian overflow attempt (netbios.rules) 10622 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 little endian andx overflow attempt (netbios.rules) 10624 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 unicode little endian andx object call overflow attempt (netbios.rules) 10627 <-> NETBIOS SMB-DS v4 dns R_DnssrvUpdateRecord2 unicode little endian overflow attempt (netbios.rules) 10630 <-> NETBIOS DCERPC DIRECT dns R_DnssrvUpdateRecord2 little endian overflow attempt (netbios.rules) 10632 <-> NETBIOS DCERPC DIRECT dns R_DnssrvUpdateRecord2 overflow attempt (netbios.rules) 10638 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 andx overflow attempt (netbios.rules) 10640 <-> NETBIOS SMB-DS v4 dns R_DnssrvUpdateRecord2 WriteAndX little endian andx overflow attempt (netbios.rules) 10644 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 unicode andx overflow attempt (netbios.rules) 10645 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 WriteAndX unicode little endian andx object call overflow attempt (netbios.rules) 10646 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 WriteAndX andx overflow attempt (netbios.rules) 10649 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 little endian andx object call overflow attempt (netbios.rules) 10652 <-> NETBIOS SMB-DS v4 dns R_DnssrvUpdateRecord2 little endian overflow attempt (netbios.rules) 10653 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 little endian object call overflow attempt (netbios.rules) 10658 <-> NETBIOS SMB-DS v4 dns R_DnssrvUpdateRecord2 WriteAndX unicode overflow attempt (netbios.rules) 10659 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 unicode overflow attempt (netbios.rules) 10661 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 unicode little endian object call overflow attempt (netbios.rules) 10664 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 WriteAndX unicode overflow attempt (netbios.rules) 10669 <-> NETBIOS SMB-DS v4 dns R_DnssrvUpdateRecord2 unicode andx overflow attempt (netbios.rules) 10672 <-> NETBIOS SMB-DS v4 dns R_DnssrvUpdateRecord2 little endian andx overflow attempt (netbios.rules) 10679 <-> NETBIOS SMB-DS v4 dns R_DnssrvUpdateRecord2 WriteAndX unicode andx overflow attempt (netbios.rules) 10686 <-> NETBIOS SMB-DS v4 dns R_DnssrvUpdateRecord2 andx overflow attempt (netbios.rules) 10688 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 andx object call overflow attempt (netbios.rules) 10690 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 WriteAndX unicode little endian andx overflow attempt (netbios.rules) 10699 <-> NETBIOS SMB-DS dns unicode alter context attempt (netbios.rules) 10700 <-> NETBIOS SMB-DS dns unicode andx bind attempt (netbios.rules) 10702 <-> NETBIOS SMB-DS dns unicode bind attempt (netbios.rules) 10708 <-> NETBIOS SMB-DS dns unicode andx alter context attempt (netbios.rules) 10714 <-> NETBIOS SMB-DS dns unicode little endian andx bind attempt (netbios.rules) 10715 <-> NETBIOS SMB-DS dns unicode little endian bind attempt (netbios.rules) 10716 <-> NETBIOS DCERPC DIRECT dns little endian alter context attempt (netbios.rules) 10717 <-> NETBIOS SMB-DS dns unicode little endian andx alter context attempt (netbios.rules) 10726 <-> NETBIOS SMB-DS dns WriteAndX little endian andx alter context attempt (netbios.rules) 10727 <-> NETBIOS SMB-DS dns WriteAndX little endian alter context attempt (netbios.rules) 10728 <-> NETBIOS SMB-DS dns WriteAndX little endian andx bind attempt (netbios.rules) 10729 <-> NETBIOS SMB-DS dns WriteAndX little endian bind attempt (netbios.rules) 10738 <-> NETBIOS SMB-DS dns little endian andx bind attempt (netbios.rules) 10739 <-> NETBIOS SMB-DS dns little endian bind attempt (netbios.rules) 10740 <-> NETBIOS DCERPC DIRECT dns bind attempt (netbios.rules) 10741 <-> NETBIOS SMB-DS dns little endian andx alter context attempt (netbios.rules) 10747 <-> NETBIOS SMB-DS dns WriteAndX unicode little endian alter context attempt (netbios.rules) 10748 <-> NETBIOS SMB-DS dns WriteAndX unicode little endian andx bind attempt (netbios.rules) 10750 <-> NETBIOS SMB-DS dns WriteAndX unicode little endian bind attempt (netbios.rules) 10756 <-> NETBIOS SMB-DS dns WriteAndX unicode little endian andx alter context attempt (netbios.rules) 10762 <-> NETBIOS SMB-DS dns andx bind attempt (netbios.rules) 10763 <-> NETBIOS SMB-DS dns bind attempt (netbios.rules) 10764 <-> NETBIOS DCERPC DIRECT dns alter context attempt (netbios.rules) 10765 <-> NETBIOS SMB-DS dns WriteAndX andx alter context attempt (netbios.rules) 10774 <-> NETBIOS SMB-DS dns WriteAndX unicode andx alter context attempt (netbios.rules) 10775 <-> NETBIOS SMB-DS dns WriteAndX unicode alter context attempt (netbios.rules) 10776 <-> NETBIOS SMB-DS dns WriteAndX unicode andx bind attempt (netbios.rules) 10777 <-> NETBIOS SMB-DS dns WriteAndX unicode bind attempt (netbios.rules) 10786 <-> NETBIOS SMB-DS dns WriteAndX andx bind attempt (netbios.rules) 10787 <-> NETBIOS SMB-DS dns WriteAndX bind attempt (netbios.rules) 10788 <-> NETBIOS DCERPC DIRECT dns little endian bind attempt (netbios.rules) 10789 <-> NETBIOS SMB-DS dns andx alter context attempt (netbios.rules) 10810 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords WriteAndX little endian andx object call overflow attempt (netbios.rules) 10812 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords WriteAndX unicode andx object call overflow attempt (netbios.rules) 10815 <-> NETBIOS DCERPC DIRECT dns R_DnssrvEnumRecords overflow attempt (netbios.rules) 10823 <-> NETBIOS DCERPC DIRECT dns R_DnssrvEnumRecords little endian object call overflow attempt (netbios.rules) 10825 <-> NETBIOS SMB-DS v4 dns R_DnssrvEnumRecords WriteAndX little endian overflow attempt (netbios.rules) 10826 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords WriteAndX object call overflow attempt (netbios.rules) 10827 <-> NETBIOS SMB-DS v4 dns R_DnssrvEnumRecords WriteAndX unicode little endian andx overflow attempt (netbios.rules) 10828 <-> NETBIOS SMB-DS v4 dns R_DnssrvEnumRecords WriteAndX overflow attempt (netbios.rules) 10829 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords little endian overflow attempt (netbios.rules) 10837 <-> NETBIOS SMB-DS v4 dns R_DnssrvEnumRecords WriteAndX unicode little endian overflow attempt (netbios.rules) 10839 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords WriteAndX little endian object call overflow attempt (netbios.rules) 10847 <-> NETBIOS SMB-DS v4 dns R_DnssrvEnumRecords WriteAndX andx overflow attempt (netbios.rules) 10851 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords unicode andx object call overflow attempt (netbios.rules) 10853 <-> NETBIOS DCERPC DIRECT v4 dns R_DnssrvEnumRecords little endian overflow attempt (netbios.rules) 10854 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords andx object call overflow attempt (netbios.rules) 10859 <-> NETBIOS DCERPC DIRECT dns R_DnssrvEnumRecords object call overflow attempt (netbios.rules) 10864 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords unicode little endian overflow attempt (netbios.rules) 10866 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords object call overflow attempt (netbios.rules) 10874 <-> NETBIOS SMB-DS v4 dns R_DnssrvEnumRecords little endian andx overflow attempt (netbios.rules) 10876 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords WriteAndX overflow attempt (netbios.rules) 10877 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords little endian object call overflow attempt (netbios.rules) 10878 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords unicode little endian andx overflow attempt (netbios.rules) 10879 <-> NETBIOS SMB-DS v4 dns R_DnssrvEnumRecords little endian overflow attempt (netbios.rules) 10880 <-> NETBIOS SMB-DS v4 dns R_DnssrvEnumRecords overflow attempt (netbios.rules) 10882 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords WriteAndX unicode little endian andx object call overflow attempt (netbios.rules) 10884 <-> NETBIOS SMB-DS v4 dns R_DnssrvEnumRecords andx overflow attempt (netbios.rules) 10887 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords little endian andx object call overflow attempt (netbios.rules) 10895 <-> NETBIOS DCERPC DIRECT dns R_DnssrvEnumRecords little endian overflow attempt (netbios.rules) 10897 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords overflow attempt (netbios.rules) 10898 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords WriteAndX unicode object call overflow attempt (netbios.rules) 10899 <-> NETBIOS SMB-DS v4 dns R_DnssrvEnumRecords WriteAndX unicode andx overflow attempt (netbios.rules) 10900 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords WriteAndX unicode overflow attempt (netbios.rules) 10901 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords WriteAndX unicode little endian overflow attempt (netbios.rules) 10909 <-> NETBIOS SMB-DS v4 dns R_DnssrvEnumRecords WriteAndX unicode overflow attempt (netbios.rules) 10911 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords unicode little endian object call overflow attempt (netbios.rules) 10919 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords WriteAndX unicode andx overflow attempt (netbios.rules) 10923 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords little endian andx overflow attempt (netbios.rules) 10925 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords WriteAndX andx object call overflow attempt (netbios.rules) 10926 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords unicode little endian andx object call overflow attempt (netbios.rules) 10931 <-> NETBIOS DCERPC DIRECT v4 dns R_DnssrvEnumRecords overflow attempt (netbios.rules) 10936 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords unicode overflow attempt (netbios.rules) 10938 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords WriteAndX unicode little endian object call overflow attempt (netbios.rules) 10946 <-> NETBIOS SMB-DS v4 dns R_DnssrvEnumRecords unicode andx overflow attempt (netbios.rules) 10948 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords WriteAndX little endian overflow attempt (netbios.rules) 10949 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords unicode object call overflow attempt (netbios.rules) 10950 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords unicode andx overflow attempt (netbios.rules) 10951 <-> NETBIOS SMB-DS v4 dns R_DnssrvEnumRecords unicode overflow attempt (netbios.rules) 10952 <-> NETBIOS SMB-DS v4 dns R_DnssrvEnumRecords unicode little endian overflow attempt (netbios.rules)
