Network Security: Detailed info on [Snort-sigs] Bleeding Edge Threats Daily Signature Changes

Subject:	[Snort-sigs] Bleeding Edge Threats Daily Signature Changes
Date:	Tue, 12 Jun 2007 16:00:13 -0400 (EDT)

Subject:

[Snort-sigs] Bleeding Edge Threats Daily Signature Changes

Date:

Tue, 12 Jun 2007 16:00:13 -0400 (EDT)


[***] Results from Oinkmaster started Tue Jun 12 16:00:13 2007 [***]

[+++]          Added rules:          [+++]

 2005180 - BLEEDING-EDGE WEB PHPWind SQL Injection Attempt -- admin.php  INSERT 
(bleeding-web.rules)


[+++]      Added non-rule lines:     [+++]

     -> Added to bleeding-sid-msg.map (1):
        2005180 || BLEEDING-EDGE WEB PHPWind SQL Injection Attempt -- admin.php 
 INSERT || url,www.milw0rm.com/exploits/2759 || cve,CVE-2006-7101

[---]     Removed non-rule lines:    [---]

     -> Removed from bleeding-web.rules (1):
        alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS 
(msg:"BLEEDING-EDGE WEB PHPWind SQL Injection Attempt -- admin.php  INSERT"; 
flow:established,to_server; uricontent:"/admin.php?"; nocase; 
pcre:"/INSERT.+INTO/Ui"; classtype:web-application-attack; 
reference:cve,CVE-2006-7101; reference:url,www.milw0rm.com/exploits/2759; 
sid:200i5180; rev:1;)


-------------------------------------------------------------------------
This SF.net email is sponsored by DB2 Express
Download DB2 Express C - the FREE version of DB2 express and take
control of your XML. No limits. Just data. Click to get it now.
http://sourceforge.net/powerbar/db2/
_______________________________________________
Snort-sigs mailing list
Snort-sigs@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/snort-sigs

<Prev in Thread]	Current Thread	[Next in Thread>
[Snort-sigs] Bleeding Edge Threats Daily Signature Changes, bleeding [Snort-sigs] Bleeding Edge Threats Daily Signature Changes, bleeding [Snort-sigs] Bleeding Edge Threats Daily Signature Changes, bleeding [Snort-sigs] Bleeding Edge Threats Daily Signature Changes, bleeding [Snort-sigs] Bleeding Edge Threats Daily Signature Changes, bleeding <= [Snort-sigs] Bleeding Edge Threats Daily Signature Changes, bleeding [Snort-sigs] Bleeding Edge Threats Daily Signature Changes, bleeding [Snort-sigs] Bleeding Edge Threats Daily Signature Changes, bleeding [Snort-sigs] Bleeding Edge Threats Daily Signature Changes, bleeding [Snort-sigs] Bleeding Edge Threats Daily Signature Changes, bleeding [Snort-sigs] Bleeding Edge Threats Daily Signature Changes, bleeding [Snort-sigs] Bleeding Edge Threats Daily Signature Changes, bleeding [Snort-sigs] Bleeding Edge Threats Daily Signature Changes, bleeding [Snort-sigs] Bleeding Edge Threats Daily Signature Changes, bleeding [Snort-sigs] Bleeding Edge Threats Daily Signature Changes, bleeding

<Prev in Thread]

Current Thread

[Next in Thread>

Previous by Date:	Re: [Snort-sigs] Commented out rules in snort-rules.tgz, Alex Kirk
Next by Date:	[Snort-sigs] Sourcefire VRT Certified Snort Rules Update, Sourcefire VRT
Previous by Thread:	[Snort-sigs] Bleeding Edge Threats Daily Signature Changes, bleeding
Next by Thread:	[Snort-sigs] Bleeding Edge Threats Daily Signature Changes, bleeding
Indexes:	[Date] [Thread] [Top] [All Lists]

Previous by Date:

Re: [Snort-sigs] Commented out rules in snort-rules.tgz, Alex Kirk

Next by Date:

[Snort-sigs] Sourcefire VRT Certified Snort Rules Update, Sourcefire VRT

Previous by Thread:

[Snort-sigs] Bleeding Edge Threats Daily Signature Changes, bleeding

Next by Thread:

[Snort-sigs] Bleeding Edge Threats Daily Signature Changes, bleeding

Indexes:

[Date] [Thread] [Top] [All Lists]