Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Snort-Signatures
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[Snort-sigs] Sourcefire VRT Certified Snort Rules Update

from [research] Network Security [Permanent Link]
Subject: [Snort-sigs] Sourcefire VRT Certified Snort Rules Update
Date: Tue, 22 Jul 2008 16:58:11 -0400 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Sourcefire VRT Certified Snort Rules Update

Synopsis:
The Sourcefire VRT is aware of vulnerabilities affecting IBM Lotus Domino, 
Novell GroupWise and Adobe RoboHelp.

Details:
IBM Lotus Domino Header Overflow (CVE-2008-2240):
IBM Lotus Domino contains a stack-based overflow condition that may allow a 
remote attacker to execute code on an affected system. The problem occurs when 
the application processes long HTTP Accept-Language headers.

A rule to detect attacks targeting this vulnerability is included in this 
release and is identified with GID 1 and SID 13924.

Novell GroupWise Overflow (CVE-2008-2703):
Novell GroupWise Messenger contains multiple buffer overflow conditions that 
may allow a remote attacker to execute code on an affected system.
 The problem occurs when the application processes malformed server responses.

A rule to detect attacks targeting this vulnerability is included in this 
release and is identified with GID 1 and SID 13926.

Adobe RoboHelp SQL Injection (CVE-2008-2991):
Adobe RoboHelp is vulnerable to multiple cross-site scripting attacks that may 
allow a remote attacker to inject script or HTML on an affected system.

Rules to detect attacks targeting this vulnerability are included in this 
release and are identified with GID 1, SIDs 13928 and 13929.

For a complete list of new and modified rules please see:

http://www.snort.org/vrt/docs/ruleset_changelogs/changes-2008-07-22.html

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (GNU/Linux)

iD8DBQFIhjlS8GAEVQeoGrMRAocVAJ4t7TKwIOOyFfVNdtrqVxuTfzOafgCfbqzq
tZ13pxBzJCejlI037pTPgsc=
=o4rE
-----END PGP SIGNATURE-----

-------------------------------------------------------------------------
This SF.Net email is sponsored by the Moblin Your Move Developer's challenge
Build the coolest Linux based applications with Moblin SDK & win great prizes
Grand prize is a trip for two to an Open Source event anywhere in the world
http://moblin-contest.org/redirect.php?banner_id=100&url=/
_______________________________________________
Snort-sigs mailing list
Snort-sigs@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/snort-sigs
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [Snort-sigs] Emerging Threats Weekly Signature Changes, emerging
Next by Date:  Re: [Snort-sigs] Thread hijack to annoy Nigel, Frank Knobbe
Previous by Thread:  [Snort-sigs] Sourcefire VRT Certified Snort Rules Update, research
Next by Thread:  [Snort-sigs] Sourcefire VRT Certified Snort Rules Update, research
Indexes:  [Date] [Thread] [Top] [All Lists]