Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Snort-Signatures
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[Snort-sigs] snort-rules update @ Wed Sep 22 10:15:46 2004

from [bmc] Network Security [Permanent Link]
Subject: [Snort-sigs] snort-rules update @ Wed Sep 22 10:15:46 2004
Date: Wed, 22 Sep 2004 10:15:46 -0400 
New rules:
2674 - ORACLE dbms_repcat.add_delete_resolution buffer overflow attempt 
(oracle.rules, requires 2.1 or later)
2675 - ORACLE dbms_repcat_rgt.instantiate_offline buffer overflow attempt 
(oracle.rules, requires 2.1 or later)
2676 - ORACLE dbms_repcat_rgt.drop_site_instantiation buffer overflow attempt 
(oracle.rules, requires 2.1 or later)
2677 - ORACLE dbms_repcat_rgt.instantiate_online buffer overflow attempt 
(oracle.rules, requires 2.1 or later)
2678 - ORACLE ctx_output.start_log buffer overflow attempt (oracle.rules, 
requires 2.1 or later)
2679 - ORACLE sys.dbms_system.ksdwrt buffer overflow attempt (oracle.rules, 
requires 2.1 or later)
2680 - ORACLE ctxsys.driddlr.subindexpopulate buffer overflow attempt 
(oracle.rules, requires 2.1 or later)
2681 - ORACLE mdsys.sdo_admin.sdo_code_size buffer overflow attempt 
(oracle.rules, requires 2.1 or later)
2682 - ORACLE mdsys.md2.validate_geom buffer overflow attempt (oracle.rules, 
requires 2.1 or later)
2683 - ORACLE mdsys.md2.sdo_code_size buffer overflow attempt (oracle.rules, 
requires 2.1 or later)
2684 - ORACLE sys.ltutil.pushdeferredtxns buffer overflow attempt 
(oracle.rules, requires 2.1 or later)
2685 - ORACLE sys.dbms_repcat_rq.add_column buffer overflow attempt 
(oracle.rules, requires 2.1 or later)
2686 - ORACLE sys.dbms_rectifier_diff.differences buffer overflow attempt 
(oracle.rules, requires 2.1 or later)
2687 - ORACLE sys.dbms_internal_repcat.validate buffer overflow attempt 
(oracle.rules, requires 2.1 or later)
2688 - ORACLE sys.dbms_internal_repcat.enable_receiver_trace buffer overflow 
attempt (oracle.rules, requires 2.1 or later)
2689 - ORACLE sys.dbms_internal_repcat.disable_receiver_trace buffer overflow 
attempt (oracle.rules, requires 2.1 or later)
2690 - ORACLE sys.dbms_defer_repcat.enable_propagation_to_dblink buffer 
overflow attempt (oracle.rules, requires 2.1 or later)
2691 - ORACLE sys.dbms_defer_internal_sys.parallel_push_recovery buffer 
overflow attempt (oracle.rules, requires 2.1 or later)
2692 - ORACLE sys.dbms_aqadm_sys.verify_queue_types buffer overflow attempt 
(oracle.rules, requires 2.1 or later)
2693 - ORACLE sys.dbms_aqadm.verify_queue_types_no_queue buffer overflow 
attempt (oracle.rules, requires 2.1 or later)
2694 - ORACLE sys.dbms_aqadm.verify_queue_types_get_nrp buffer overflow attempt 
(oracle.rules, requires 2.1 or later)
2695 - ORACLE sys.dbms_aq_import_internal.aq_table_defn_update buffer overflow 
attempt (oracle.rules, requires 2.1 or later)
2696 - ORACLE sys.dbms_repcat_utl.is_master buffer overflow attempt 
(oracle.rules, requires 2.1 or later)
2697 - ORACLE alter file buffer overflow attempt (oracle.rules, requires 2.1 or 
later)
2698 - ORACLE create file buffer overflow attempt (oracle.rules, requires 2.1 
or later)
2699 - ORACLE TO_CHAR buffer overflow attempt (oracle.rules, requires 2.1 or 
later)
2700 - ORACLE numtoyminterval buffer overflow attempt (oracle.rules, requires 
2.1 or later)
2701 - WEB-MISC Oracle iSQLPlus sid overflow attempt (web-misc.rules, requires 
2.1 or later)
2702 - WEB-MISC Oracle iSQLPlus username overflow attempt (web-misc.rules, 
requires 2.1 or later)
2703 - WEB-MISC Oracle iSQLPlus login.uix username overflow attempt 
(web-misc.rules, requires 2.1 or later)
2704 - WEB-MISC Oracle 10g iSQLPlus login.unix connectID overflow attempt 
(web-misc.rules, requires 2.1 or later)
2705 - WEB-CLIENT JPEG parser heap overflow attempt (web-client.rules, requires 
2.1 or later)
2706 - WEB-CLIENT JPEG transfer (web-client.rules, requires 2.2 or later)
2707 - WEB-CLIENT JPEG parser multipacket heap overflow (web-client.rules, 
requires 2.2 or later)

Updated rules:
1676 - ORACLE select union attempt (oracle.rules)
1677 - ORACLE select like '%' attempt (oracle.rules)
1678 - ORACLE select like '%' attempt backslash escaped (oracle.rules)
1679 - ORACLE describe attempt (oracle.rules)
1680 - ORACLE all_constraints access (oracle.rules)
1681 - ORACLE all_views access (oracle.rules)
1682 - ORACLE all_source access (oracle.rules)
1683 - ORACLE all_tables access (oracle.rules)
1684 - ORACLE all_tab_columns access (oracle.rules)
1685 - ORACLE all_tab_privs access (oracle.rules)
1686 - ORACLE dba_tablespace access (oracle.rules)
1687 - ORACLE dba_tables access (oracle.rules)
1688 - ORACLE user_tablespace access (oracle.rules)
1689 - ORACLE sys.all_users access (oracle.rules)
1690 - ORACLE grant attempt (oracle.rules)
1691 - ORACLE ALTER USER attempt (oracle.rules)
1692 - ORACLE drop table attempt (oracle.rules)
1693 - ORACLE create table attempt (oracle.rules)
1694 - ORACLE alter table attempt (oracle.rules)
1695 - ORACLE truncate table attempt (oracle.rules)
1696 - ORACLE create database attempt (oracle.rules)
1697 - ORACLE alter database attempt (oracle.rules)
1930 - IMAP auth literal overflow attempt (imap.rules, requires 2.1 or later)
2418 - MISC MS Terminal Server no encryption session initiation attempt 
(misc.rules)
2576 - ORACLE dbms_repcat.generate_replication_support buffer overflow attempt 
(oracle.rules, requires 2.1 or later)
2599 - ORACLE dbms_repcat.add_grouped_column buffer overflow attempt 
(oracle.rules, requires 2.1 or later)
2601 - ORACLE dbms_repcat.drop_master_repgroup buffer overflow attempt 
(oracle.rules, requires 2.1 or later)
2603 - ORACLE dbms_repcat.create_mview_repgroup buffer overflow attempt 
(oracle.rules, requires 2.1 or later)
2605 - ORACLE dbms_repcat.compare_old_values buffer overflow attempt 
(oracle.rules, requires 2.1 or later)
2606 - ORACLE dbms_repcat.comment_on_repobject buffer overflow attempt 
(oracle.rules, requires 2.1 or later)
2608 - ORACLE sysdbms_repcat_rgt.check_ddl_text buffer overflow attempt 
(oracle.rules, requires 2.1 or later)
2609 - ORACLE dbms_repcat.cancel_statistics buffer overflow attempt 
(oracle.rules, requires 2.1 or later)
2612 - ORACLE sys.dbms_repcat_auth.revoke_surrogate_repcat buffer overflow 
attempt (oracle.rules, requires 2.1 or later)
2615 - ORACLE sys.dbms_repcat_auth.grant_surrogate_repcat buffer overflow 
attempt (oracle.rules, requires 2.1 or later)
2617 - ORACLE sys.dbms_repcat.alter_mview_propagation buffer overflow attempt 
(oracle.rules, requires 2.1 or later)
2619 - ORACLE dbms_repcat.alter_master_repobject buffer overflow attempt 
(oracle.rules, requires 2.1 or later)
2621 - ORACLE dbms_repcat_sna_utl.register_flavor_change buffer overflow 
attempt (oracle.rules, requires 2.1 or later)
2622 - ORACLE dbms_repcat_utl.drop_an_object buffer overflow attempt 
(oracle.rules, requires 2.1 or later)
2623 - ORACLE dbms_repcat_sna_utl.create_snapshot_repgroup buffer overflow 
attempt (oracle.rules, requires 2.1 or later)
2624 - ORACLE dbms_repcat_admin.unregister_user_repgroup buffer overflow 
attempt (oracle.rules, requires 2.1 or later)
2626 - ORACLE dbms_repcat.send_old_values buffer overflow attempt 
(oracle.rules, requires 2.1 or later)
2627 - ORACLE dbms_repcat.repcat_import_check buffer overflow attempt 
(oracle.rules, requires 2.1 or later)
2629 - ORACLE dbms_repcat_admin.register_user_repgroup buffer overflow attempt 
(oracle.rules, requires 2.1 or later)
2631 - ORACLE dbms_repcat.refresh_mview_repgroup buffer overflow attempt 
(oracle.rules, requires 2.1 or later)
2633 - ORACLE sys.dbms_rectifier_diff.rectify buffer overflow attempt 
(oracle.rules, requires 2.1 or later)
2635 - ORACLE dbms_offline_snapshot.end_load buffer overflow attempt 
(oracle.rules, requires 2.1 or later)
2637 - ORACLE dbms_repcat.drop_master_repobject buffer overflow attempt 
(oracle.rules, requires 2.1 or later)
2639 - ORACLE dbms_repcat.drop_mview_repgroup buffer overflow attempt 
(oracle.rules, requires 2.1 or later)
2641 - ORACLE dbms_repcat_instantiate.drop_site_instantiation buffer overflow 
attempt (oracle.rules, requires 2.1 or later)
2643 - ORACLE sys.dbms_repcat_fla.ensure_not_published buffer overflow attempt 
(oracle.rules, requires 2.1 or later)
2645 - ORACLE dbms_repcat_instantiate.instantiate_offline buffer overflow 
attempt (oracle.rules, requires 2.1 or later)
2647 - ORACLE dbms_repcat_instantiate.instantiate_online buffer overflow 
attempt (oracle.rules, requires 2.1 or later)
2652 - ORACLE dbms_offline_og.begin_load buffer overflow attempt (oracle.rules, 
requires 2.1 or later)
2664 - IMAP login format string attempt (imap.rules, requires 2.1 or later)
2665 - IMAP login literal format string attempt (imap.rules, requires 2.1 or 
later)
2671 - WEB-CLIENT bitmap BitmapOffset integer overflow attempt 
(web-client.rules, requires 2.1 or later)



-------------------------------------------------------
This SF.Net email is sponsored by: YOU BE THE JUDGE. Be one of 170
Project Admins to receive an Apple iPod Mini FREE for your judgement on
who ports your project to Linux PPC the best. Sponsored by IBM.
Deadline: Sept. 24. Go here: http://sf.net/ppc_contest.php
_______________________________________________
Snort-sigs mailing list
Snort-sigs@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/snort-sigs
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • [Snort-sigs] snort-rules update @ Wed Sep 22 10:15:46 2004, bmc <=
Previous by Date:  Re: [Snort-sigs] Barnyard Choking., sekure
Next by Date:  Re: [Snort-sigs] Barnyard Choking., Mailing Lists
Previous by Thread:  [Snort-sigs] Barnyard Choking, James Ashton
Next by Thread:  [Snort-sigs] False positive for rule 1:1365, Worthy
Indexes:  [Date] [Thread] [Top] [All Lists]