Ruleset Update Summary - 2023/01/26 - v10230

Summary:

7 new OPEN, 33 new PRO (7 + 26)

The Emerging Threats mailing list is migrating to Discourse. Please visit us at https://community.emergingthreats.net

We will announce the mailing list retirement date in the near future.

Added rules:

Open:

• 2043996 - ET INFO Suspected Impacket WMIExec Activity (info.rules)
• 2043997 - ET MALWARE PseudoManuscrypt Activity (POST) (malware.rules)
• 2043998 - ET INFO Observed DNS Over HTTPS Domain in TLS SNI (opennameserver .org) (info.rules)
• 2043999 - ET INFO Observed DNS Over HTTPS Domain in TLS SNI (teradns .org) (info.rules)
• 2044001 - ET MALWARE Luminosity Link Variant CnC Activity (get_failed) (malware.rules)
• 2044002 - ET EXPLOIT Lexmark Malicious File Upload Detected (exploit.rules)
• 2044003 - ET MALWARE Luminosity Link Variant Payload Retrieval Request (malware.rules)

Pro:

• 2853147 - ETPRO MOBILE_MALWARE Android.Spy.989.origin CnC Domain in DNS Lookup (mobile_malware.rules)
• 2853148 - ETPRO MOBILE_MALWARE Observed Android.Spy.989.origin Domain in TLS SNI (mobile_malware.rules)
• 2853149 - ETPRO MOBILE_MALWARE Trojan-Spy.AndroidOS.SmsThief.ta CnC Domain in DNS Lookup (mobile_malware.rules)
• 2853150 - ETPRO MOBILE_MALWARE Trojan-Dropper.AndroidOS.Hqwar.fk CnC Domain in DNS Lookup (mobile_malware.rules)
• 2853151 - ETPRO MOBILE_MALWARE Trojan-Dropper.AndroidOS.Hqwar.fk CnC Domain in DNS Lookup (mobile_malware.rules)
• 2853152 - ETPRO MOBILE_MALWARE Observed Trojan-Dropper.AndroidOS.Hqwar.fk Domain in TLS SNI (mobile_malware.rules)
• 2853153 - ETPRO MOBILE_MALWARE Observed Trojan-Dropper.AndroidOS.Hqwar.fk Domain in TLS SNI (mobile_malware.rules)
• 2853154 - ETPRO MOBILE_MALWARE Trojan.AndroidOS.Harly.ac CnC Domain in DNS Lookup (mobile_malware.rules)
• 2853155 - ETPRO MOBILE_MALWARE Android.Joker.2000 CnC Domain in DNS Lookup (mobile_malware.rules)
• 2853156 - ETPRO MOBILE_MALWARE Observed Android.Joker.2000 Domain in TLS SNI (mobile_malware.rules)
• 2853157 - ETPRO MOBILE_MALWARE Android/Spy.Agent.BWK Checkin (mobile_malware.rules)
• 2853158 - ETPRO MOBILE_MALWARE Android/Spy.Agent.BWK CnC Domain in DNS Lookup (mobile_malware.rules)
• 2853159 - ETPRO MOBILE_MALWARE Trojan-Spy.AndroidOS.SmsThief.sw CnC Domain in DNS Lookup (mobile_malware.rules)
• 2853160 - ETPRO MOBILE_MALWARE Trojan-Spy.AndroidOS.Femas.b CnC Domain in DNS Lookup (mobile_malware.rules)
• 2853161 - ETPRO MOBILE_MALWARE Trojan-Banker.AndroidOS.Knobot.k CnC Domain in DNS Lookup (mobile_malware.rules)
• 2853162 - ETPRO MOBILE_MALWARE Trojan-Banker.AndroidOS.Knobot.k CnC Domain in DNS Lookup (mobile_malware.rules)
• 2853163 - ETPRO MOBILE_MALWARE Android/Spy.Agent.CLO CnC Domain in DNS Lookup (mobile_malware.rules)
• 2853164 - ETPRO MOBILE_MALWARE Trojan-Spy.AndroidOS.SmsThief.ta CnC Domain in DNS Lookup (mobile_malware.rules)
• 2853165 - ETPRO MOBILE_MALWARE Android/Spy.Banker.BSO CnC Domain in DNS Lookup (mobile_malware.rules)
• 2853166 - ETPRO HUNTING Possible PowerShell Inbound - Github Integration (hunting.rules)
• 2853167 - ETPRO MALWARE Win32/XWorm V3 CnC Command - PING Outbound (malware.rules)
• 2853168 - ETPRO MALWARE Win32/XWorm CnC Command - PING Inbound (malware.rules)
• 2853169 - ETPRO MALWARE Win32/XWorm V3 CnC Command - sendPlugin Outbound (malware.rules)
• 2853170 - ETPRO MALWARE Win32/XWorm V3 CnC Command - savePlugin Inbound (malware.rules)
• 2853171 - ETPRO MALWARE Win32/XWorm V2 CnC Command - PING Outbound (malware.rules)
• 2853172 - ETPRO PHISHING Successful MyGov Phish 2023-01-25 (phishing.rules)

Modified inactive rules:

• 2000005 - ET EXPLOIT Cisco Telnet Buffer Overflow (exploit.rules)
• 2000017 - ET NETBIOS NII Microsoft ASN.1 Library Buffer Overflow Exploit (netbios.rules)
• 2000380 - ET EXPLOIT MS-SQL Spike buffer overflow (exploit.rules)
• 2001988 - ET EXPLOIT MySQL MaxDB Buffer Overflow (exploit.rules)
• 2002315 - ET EXPLOIT Incoming Electronic Mail for UNIX Expires Header Buffer Overflow Exploit (exploit.rules)
• 2002316 - ET EXPLOIT Outgoing Electronic Mail for UNIX Expires Header Buffer Overflow Exploit (exploit.rules)
• 2002725 - ET ACTIVEX COM Object Instantiation Memory Corruption Vulnerability MS05-054 (activex.rules)
• 2002865 - ET WEB_SERVER Novell GroupWise Messenger Accept Language Buffer Overflow (web_server.rules)
• 2002889 - ET ACTIVEX JuniperSetup Control Buffer Overflow (activex.rules)
• 2002947 - ET GAMES PunkBuster Server webkey Buffer Overflow (games.rules)
• 2002971 - ET ACTIVEX Wmm2fxa.dll COM Object Instantiation Memory Corruption CLSID 1 Access Attempt (activex.rules)
• 2003056 - ET WEB_SPECIFIC_APPS EiQNetworks Security Analyzer Buffer Overflow (web_specific_apps.rules)
• 2003328 - ET ACTIVEX NCTAudioFile2 ActiveX SetFormatLikeSample() Buffer Overflow (activex.rules)
• 2007847 - ET ACTIVEX Sony ImageStation (SonyISUpload.cab 1.0.0.38) ActiveX Buffer Overflow Exploit (activex.rules)
• 2007851 - ET ACTIVEX Citrix Presentation Server Client WFICA.OCX ActiveX Component Heap Buffer Overflow Exploit (activex.rules)
• 2007904 - ET ACTIVEX RTSP MPEG4 SP Control ActiveX Control Url Property Buffer Overflow Vulnerability (activex.rules)
• 2007905 - ET ACTIVEX D-Link MPEG4 SHM (Audio) Control ActiveX Control Url Property Buffer Overflow Vulnerability (activex.rules)
• 2007931 - ET ACTIVEX ACTIVEX IncrediMail IMMenuShellExt ActiveX Control Buffer Overflow Vulnerability (activex.rules)
• 2008426 - ET EXPLOIT SecurityGateway 1.0.1 Remote Buffer Overflow (exploit.rules)
• 2008619 - ET ACTIVEX Novell ZENWorks for Desktops Remote Heap-Based Buffer Overflow (activex.rules)
• 2008869 - ET ACTIVEX VeryDOC PDF Viewer ActiveX Control OpenPDF Buffer Overflow (activex.rules)
• 2008925 - ET ACTIVEX Microsoft Windows Media Services nskey.dll ActiveX Control Possible Remote Buffer Overflow (activex.rules)
• 2008963 - ET ACTIVEX EasyMail Objects emmailstore.dll ActiveX Control Remote Buffer Overflow (activex.rules)
• 2008993 - ET ACTIVEX Microsoft Visual Basic Common AVI ActiveX Control File Parsing Buffer Overflow (activex.rules)
• 2008999 - ET ACTIVEX EvansFTP EvansFTP.ocx Remote Buffer Overflow (activex.rules)
• 2009002 - ET ACTIVEX Phoenician Casino FlashAX ActiveX Control Remote Buffer Overflow (activex.rules)
• 2009047 - ET ACTIVEX SaschArt SasCam Webcam Server ActiveX Control Get Method Buffer Overflow (activex.rules)
• 2009143 - ET ACTIVEX ACTIVEX PPMate PPMedia Class ActiveX Control Buffer Overflow (activex.rules)
• 2009178 - ET ACTIVEX Nokia Phoenix Service Software ActiveX Control Buffer Overflow (activex.rules)
• 2009385 - ET ACTIVEX Symantec WinFax Pro DCCFAXVW.DLL Heap Buffer Overflow (activex.rules)
• 2009399 - ET ACTIVEX Autodesk IDrop Indicator ActiveX Control Memory Corruption (activex.rules)
• 2009425 - ET ACTIVEX BaoFeng Storm ActiveX Control OnBeforeVideoDownload Method Buffer Overflow (activex.rules)
• 2009434 - ET ACTIVEX Sun Java Runtime Environment ActiveX Control Multiple Remote Buffer Overflow (activex.rules)
• 2009469 - ET ACTIVEX AOL Radio AmpX ActiveX Control ConvertFile Method Buffer Overflow (activex.rules)
• 2009500 - ET ACTIVEX Chinagames ActiveX Control CreateChinagames Method Buffer Overflow (activex.rules)
• 2009511 - ET EXPLOIT VLC web interface buffer overflow attempt (exploit.rules)
• 2009657 - ET ACTIVEX BaoFeng Storm ActiveX Control SetAttributeValue Method Buffer Overflow (activex.rules)
• 2009687 - ET ACTIVEX Akamai Download Manager Stack Buffer Overflow CLSID Access 1 (activex.rules)
• 2009688 - ET ACTIVEX Akamai Download Manager Stack Buffer Overflow CLSID Access 2 (activex.rules)
• 2009689 - ET ACTIVEX Akamai Download Manager Stack Buffer Overflow CLSID Access 3 (activex.rules)
• 2009725 - ET ACTIVEX Roxio CinePlayer SonicDVDDashVRNav.DLL ActiveX Control Remote Buffer Overflow (activex.rules)
• 2009735 - ET ACTIVEX Roxio CinePlayer IAManager.dll ActiveX Control Buffer Overflow (activex.rules)
• 2009792 - ET ACTIVEX Avax Vector avPreview.ocx ActiveX Control Buffer Overflow (activex.rules)
• 2009847 - ET ACTIVEX Symantec Security Check RuFSI ActiveX Control Buffer Overflow (activex.rules)
• 2009858 - ET ACTIVEX Possible PPStream MList.ocx Buffer Overflow Attempt (activex.rules)
• 2009869 - ET ACTIVEX Possible SmartVMD VideoMovement.dll Buffer Overflow Attempt (activex.rules)
• 2009893 - ET ACTIVEX Possible HTTP ACTi SetText() nvUnifiedControl.dll Buffer Overflow Attempt (activex.rules)
• 2009923 - ET ACTIVEX Possible Novell GroupWise Client ‘gxmim1.dll’ ActiveX Buffer Overflow Attempt (activex.rules)
• 2010012 - ET ACTIVEX Possible EMC Captiva QuickScan Pro KeyWorks KeyHelp Module keyhelp.ocx ActiveX Control Remote Buffer Overflow Attempt (activex.rules)
• 2010160 - ET ACTIVEX Possible AOL IWinAmp ActiveX ConvertFile Buffer Overflow Attempt (activex.rules)
• 2010203 - ET ACTIVEX Possible Black Ice Printer Driver Resource Toolkit ActiveX Control EnableStartApplication/EnableStartBeforePrint/EnableKeepExistingFiles/EnablePassParameters Buffer Overflow Attempt (activex.rules)
• 2010204 - ET ACTIVEX Possible Black Ice Printer Driver Resource Toolkit ActiveX Control SetApplicationPath/SetStartApplicationParamCode/SetCustomStartAppParameter Buffer Overflow Attempt (activex.rules)
• 2010205 - ET ACTIVEX Possible Black Ice Printer Driver Resource Toolkit ActiveX Control SaveBlackIceDEVMODE Buffer Overflow Attempt (activex.rules)
• 2010206 - ET ACTIVEX Possible Black Ice Printer Driver Resource Toolkit ActiveX Control ClearUserSettings Buffer Overflow Attempt (activex.rules)
• 2010207 - ET ACTIVEX Possible Black Ice Printer Driver Resource Toolkit ActiveX Control ControlJob Buffer Overflow Attempt (activex.rules)
• 2010219 - ET ACTIVEX ACTIVEX SAP AG SAPgui sapirrfc.dll ActiveX Control Buffer Overflow Attempt (activex.rules)
• 2010227 - ET ACTIVEX Symantec Multiple Altiris Products AeXNSConsoleUtilities.dll ActiveX Control BrowseAndSaveFile Method Buffer Overflow Attempt (activex.rules)
• 2010256 - ET ACTIVEX Adobe Shockwave Player ActiveX Control Buffer Overflow clsid access (activex.rules)
• 2010263 - ET ACTIVEX Wmm2fxa.dll COM Object Instantiation Memory Corruption CLSID 2 Access Attempt (activex.rules)
• 2010264 - ET ACTIVEX Wmm2fxa.dll COM Object Instantiation Memory Corruption CLSID 3 Access Attempt (activex.rules)
• 2010373 - ET ACTIVEX Haihaisoft Universal Player ActiveX Control URL Property Buffer Overflow Attempt (activex.rules)
• 2010374 - ET ACTIVEX Haihaisoft Universal Player ActiveX Control URL Property Buffer Overflow Function Call Attempt (activex.rules)
• 2010467 - ET ACTIVEX SAP GUI vsflexGrid ActiveX Buffer Overflow Function call Attempt (activex.rules)
• 2010468 - ET ACTIVEX SAP GUI vsflexGrid ActiveX Archive method Buffer Overflow CLSID Attempt (activex.rules)
• 2010469 - ET ACTIVEX SAP GUI vsflexGrid ActiveX Text method Buffer Overflow CLSID Attempt (activex.rules)
• 2010470 - ET ACTIVEX SAP GUI vsflexGrid ActiveX EditSelText method Buffer Overflow CLSID Attempt (activex.rules)
• 2010471 - ET ACTIVEX SAP GUI vsflexGrid ActiveX EditText method Buffer Overflow CLSID Attempt (activex.rules)
• 2010472 - ET ACTIVEX SAP GUI vsflexGrid ActiveX CellFontName method Buffer Overflow CLSID Attempt (activex.rules)
• 2010481 - ET ACTIVEX SAP AG SAPgui EAI WebViewer2D ActiveX stack buffer overflow CLSid Access (activex.rules)
• 2010546 - ET EXPLOIT HP Open View Data Protector Buffer Overflow Attempt (exploit.rules)
• 2010560 - ET ACTIVEX Microsoft Whale Intelligent App Gateway ActiveX Buffer Overflow Function call-1 (activex.rules)
• 2010561 - ET ACTIVEX Microsoft Whale Intelligent App Gateway ActiveX Buffer Overflow Function call-2 (activex.rules)
• 2010562 - ET ACTIVEX Microsoft Whale Intelligent Application Gateway ActiveX Buffer Overflow-1 (activex.rules)
• 2010563 - ET ACTIVEX Microsoft Whale Intelligent Application Gateway ActiveX Buffer Overflow-2 (activex.rules)
• 2010611 - ET ACTIVEX HP Openview NNM ActiveX DisplayName method Memory corruption Attempt (activex.rules)
• 2010612 - ET ACTIVEX HP Openview NNM ActiveX AddGroup method Memory corruption Attempt (activex.rules)
• 2010613 - ET ACTIVEX HP Openview NNM ActiveX InstallComponent method Memory corruption Attempt (activex.rules)
• 2010614 - ET ACTIVEX HP Openview NNM ActiveX Subscribe method Memory corruption Attempt (activex.rules)
• 2010687 - ET WEB_SERVER HP OpenView Network Node Manager Snmp.exe CGI Buffer Overflow Attempt (web_server.rules)
• 2010690 - ET ACTIVEX Possible activePDF WebGrabber ActiveX Control Buffer Overflow Function Call Attempt (activex.rules)
• 2010691 - ET ACTIVEX Possible activePDF WebGrabber ActiveX Control Buffer Overflow Attempt (activex.rules)
• 2010693 - ET ACTIVEX Possible Novell iPrint Client ExecuteRequest ActiveX Control Buffer Overflow Attempt (activex.rules)
• 2010694 - ET ACTIVEX Possible Novell iPrint Client GetDriverSettings ActiveX Control Buffer Overflow Attempt (activex.rules)
• 2010702 - ET ACTIVEX Possible Windows Live Messenger ActiveX Control RichUploadControlContextData Buffer Overflow Attempt (activex.rules)
• 2010703 - ET ACTIVEX Possible Windows Live Messenger ActiveX Control RichUploadControlContextData Buffer Overflow Function Call Attempt (activex.rules)
• 2010759 - ET EXPLOIT Xerox WorkCentre PJL Daemon Buffer Overflow Attempt (exploit.rules)
• 2010760 - ET ACTIVEX Possible Gracenote CDDBControl ActiveX Control ViewProfile Method Heap Buffer Overflow Attempt (activex.rules)
• 2010778 - ET ACTIVEX HP Mercury Quality Center ActiveX ProgColor Buffer Overflow Attempt -1 (activex.rules)
• 2010779 - ET ACTIVEX HP Mercury Quality Center ActiveX ProgColor Buffer Overflow Attempt -2 (activex.rules)
• 2010839 - ET ACTIVEX Possible Rising Online Virus Scanner ActiveX Control Scan() Method Stack Buffer Overflow Attempt (activex.rules)
• 2010840 - ET ACTIVEX Viscom Software Movie Player Pro SDK ActiveX 6.8 Remote Buffer Overflow Attempt (activex.rules)
• 2010851 - ET ACTIVEX Logitech VideoCall ActiveX Start method buffer overflow Attempt (activex.rules)
• 2010852 - ET ACTIVEX WinDVD7 IASystemInfo.DLL ActiveX ApplicationType method buffer overflow Attempt (activex.rules)
• 2010931 - ET WEB_CLIENT Possible IE iepeers.dll Use-after-free Code Execution Attempt (web_client.rules)
• 2010958 - ET ACTIVEX Possible Symantec Antivirus 10.0 Client Proxy ActiveX Control Buffer Overflow Attempt (activex.rules)
• 2010959 - ET ACTIVEX Possible Symantec Antivirus 10.0 Client Proxy ActiveX Control Buffer Overflow Function Call Attempt (activex.rules)
• 2010962 - ET ACTIVEX AOL 9.5 Phobos.Playlist Import ActiveX Buffer Overflow Attempt (activex.rules)
• 2010970 - ET WEB_SERVER HP OpenView Network Node Manager OvWebHelp.exe Heap Buffer Overflow Attempt (web_server.rules)
• 2010995 - ET ACTIVEX BaoFeng Storm mps.dll ActiveX OnBeforeVideoDownload Buffer Overflow Function Call (activex.rules)
• 2010997 - ET ACTIVEX Hyleos ChemView ActiveX Control SaveasMolFile Method Buffer Overflow Attempt (activex.rules)
• 2010998 - ET ACTIVEX Hyleos ChemView ActiveX Control ReadMolFile Method Buffer Overflow Attempt (activex.rules)
• 2010999 - ET ACTIVEX Hyleos ChemView ActiveX Buffer Overflow Function Call (activex.rules)
• 2011020 - ET ACTIVEX RKD Software ActiveX Control SaveasMolFile Method Buffer Overflow Attempt (activex.rules)
• 2011048 - ET ACTIVEX IncrediMail 2.0 Authenticate Method Remote Buffer Overflow Attempt (activex.rules)
• 2011049 - ET ACTIVEX IncrediMail 2.0 Authenticate Method Remote Buffer Overflow Function Call Attempt (activex.rules)
• 2011075 - ET ACTIVEX HP Operations Manager SourceView ActiveX LoadFile/SaveFile Method Buffer Overflow Attempt (activex.rules)
• 2011129 - ET ACTIVEX Possible Attachmate Reflection X ActiveX Control ‘ControlID’ Buffer Overflow Attempt (activex.rules)
• 2011130 - ET ACTIVEX Possible Attachmate Reflection X ActiveX Control ‘ControlID’ Buffer Overflow Function Call Attempt (activex.rules)
• 2011210 - ET ACTIVEX ComponentOne VSFlexGrid ActiveX Control Archive Method Buffer Overflow Attempt (activex.rules)
• 2011211 - ET ACTIVEX AtHocGov IWSAlerts ActiveX Control Buffer Overflow Function Call Attempt (activex.rules)
• 2011212 - ET ACTIVEX Consona Products SdcUser.TgConCtl ActiveX Control Buffer Overflow Attempt (activex.rules)
• 2011242 - ET EXPLOIT Possible VLC Media Player M3U File FTP URL Processing Stack Buffer Overflow Attempt (exploit.rules)
• 2011249 - ET ACTIVEX RSP MP3 Player OCX ActiveX OpenFile Method Buffer Overflow Attempt (activex.rules)
• 2011250 - ET ACTIVEX Image22 ActiveX DrawIcon Method Buffer Overflow Attempt (activex.rules)
• 2011251 - ET ACTIVEX FathFTP ActiveX Control GetFromURL Method Buffer Overflow Attempt (activex.rules)
• 2011253 - ET ACTIVEX Registry OCX ActiveX FullPath Method Buffer Overflow Attempt (activex.rules)
• 2011328 - ET EXPLOIT HP OpenView Network Node Manager OvJavaLocale Cookie Value Buffer Overflow Attempt (exploit.rules)
• 2011366 - ET WEB_CLIENT Possible Apple Quicktime Invalid SMIL URI Buffer Overflow Attempt (web_client.rules)
• 2011478 - ET EXPLOIT Possible Microsoft Office Word 2007 sprmCMajority Buffer Overflow Attempt (exploit.rules)
• 2011501 - ET WEB_CLIENT Possible Adobe CoolType Smart INdependent Glyplets - SING - Table uniqueName Stack Buffer Overflow Attempt (web_client.rules)
• 2011732 - ET DOS Possible VNC ClientCutText Message Denial of Service/Memory Corruption Attempt (dos.rules)
• 2011864 - ET WEB_CLIENT Possible Oracle Java APPLET Tag Children Property Memory Corruption Attempt (web_client.rules)
• 2012051 - ET TFTP TFTPGUI Long Transport Mode Buffer Overflow (tftp.rules)
• 2012102 - ET ACTIVEX Image Viewer CP Gold Image2PDF Buffer Overflow (activex.rules)
• 2012134 - ET ACTIVEX SigPlus Pro 3.74 ActiveX LCDWriteString Method Remote Buffer Overflow (activex.rules)
• 2012135 - ET SMTP IBM Lotus Domino iCalendar Email Address Stack Buffer Overflow Attempt (smtp.rules)
• 2012158 - ET ACTIVEX Possible Microsoft WMI Administration Tools WEBSingleView.ocx ActiveX Buffer Overflow Attempt (CVE-2010-3973) (activex.rules)
• 2012174 - ET EXPLOIT Microsoft Windows Common Control Library Heap Buffer Overflow (exploit.rules)
• 2012218 - ET ACTIVEX Possible UserManager SelectServer method Buffer Overflow Attempt (activex.rules)
• 2012641 - ET ACTIVEX Sun Java Runtime New Plugin Docbase Buffer Overflow Attempt (activex.rules)
• 2012682 - ET EXPLOIT HP OpenView NNM snmpviewer.exe CGI Stack Buffer Overflow 1 (exploit.rules)
• 2012683 - ET EXPLOIT HP OpenView NNM snmpviewer.exe CGI Stack Buffer Overflow 2 (exploit.rules)
• 2012938 - ET DOS IBM Tivoli Endpoint Buffer Overflow Attempt (dos.rules)
• 2013250 - ET WEB_CLIENT Microsoft Word RTF pFragments Stack Buffer Overflow Attempt (CVE-2010-3333) (web_client.rules)
• 2013288 - ET EXPLOIT HP OpenView Network Node Manager Toolbar.exe CGI Buffer Overflow Attempt (exploit.rules)
• 2013462 - ET DOS Skype FindCountriesByNamePattern property Buffer Overflow Attempt (dos.rules)
• 2013463 - ET DOS Skype FindCountriesByNamePattern property Buffer Overflow Attempt Format String Function Call (dos.rules)
• 2013565 - ET ACTIVEX Tom Sawyer Software Possible Memory Corruption Attempt (activex.rules)
• 2013742 - ET WEB_CLIENT Google Chrome Multiple Iframe PDF File Handling Memory Corruption Attempt (web_client.rules)
• 2013750 - ET ACTIVEX DivX Plus Web Player DivXPlaybackModule File URL Buffer Overflow Attempt (activex.rules)
• 2014651 - ET ACTIVEX Tracker Software pdfSaver ActiveX InitFromRegistry Method Access Potential Buffer Overflow 2 (activex.rules)
• 2014831 - ET ACTIVEX Possible Wireless Manager Sony VAIO SetTmpProfileOption Method Access Buffer Overflow (activex.rules)
• 2014832 - ET ACTIVEX Possible Wireless Manager Sony VAIO ConnectToNetwork Method Access Buffer Overflow (activex.rules)
• 2014911 - ET WEB_CLIENT Microsoft Internet Explorer SameID Use-After-Free (CVE-2012-1875) (web_client.rules)
• 2014938 - ET WEB_CLIENT Potential MSXML2.DOMDocument Uninitialized Memory Corruption (CVE-2012-1889) (web_client.rules)
• 2015554 - ET WEB_CLIENT Potential MSXML2.DOM Document.3.0 Uninitialized Memory Corruption Attempt (CVE-2012-1889) (web_client.rules)
• 2015555 - ET WEB_CLIENT Potential MSXML2.DOMDocument.4-6.0 Uninitialized Memory Corruption (CVE-2012-1889) (web_client.rules)
• 2015866 - ET CURRENT_EVENTS Sophos PDF Standard Encryption Key Length Buffer Overflow (current_events.rules)
• 2015867 - ET CURRENT_EVENTS Sophos PDF Standard Encryption Key Length Buffer Overflow (current_events.rules)
• 2016138 - ET EXPLOIT Possible Internet Explorer Use-After-Free Inbound (CVE-2012-4792) (exploit.rules)
• 2016322 - ET DOS LibuPnP CVE-2012-5958 ST DeviceType Buffer Overflow (dos.rules)
• 2016323 - ET DOS LibuPnP ST UDN Buffer Overflow (CVE-2012-5963) (dos.rules)
• 2016324 - ET DOS LibuPnP CVE-2012-5964 ST URN ServiceType Buffer Overflow (dos.rules)
• 2016325 - ET DOS LibuPnP CVE-2012-5965 ST URN DeviceType Buffer Overflow (dos.rules)
• 2016326 - ET DOS LibuPnP CVE-2012-5961 ST UDN Buffer Overflow (dos.rules)
• 2016363 - ET DOS Miniupnpd M-SEARCH Buffer Overflow (CVE-2013-0229) (dos.rules)
• 2016364 - ET DOS Miniupnpd SoapAction MethodName Buffer Overflow (CVE-2013-0230) (dos.rules)
• 2017133 - ET WEB_CLIENT Microsoft Internet Explorer Use-After-Free (CVE-2013-3163) (web_client.rules)
• 2017463 - ET WEB_CLIENT MS13-055 CAnchorElement Use-After-Free (web_client.rules)
• 2017478 - ET WEB_CLIENT Microsoft IE Memory Corruption Inbound (CVE-2013-3893) (web_client.rules)
• 2017479 - ET WEB_CLIENT Internet Explorer Memory Corruption Inbound (CVE-2013-3893) (web_client.rules)
• 2017480 - ET WEB_CLIENT Microsoft IE Memory Corruption Inbound (CVE-2013-3893) (web_client.rules)
• 2017572 - ET WEB_CLIENT Possible Microsoft Internet Explorer Use-After-Free (CVE-2013-3897) (web_client.rules)
• 2017684 - ET WEB_SERVER Possible SUPERMICRO IPMI login.cgi Name Parameter Buffer Overflow Attempt CVE-2013-3621 (web_server.rules)
• 2017685 - ET WEB_SERVER Possible SUPERMICRO IPMI login.cgi PWD Parameter Buffer Overflow Attempt CVE-2013-3621 (web_server.rules)
• 2017686 - ET WEB_SERVER Possible SUPERMICRO IPMI close_window.cgi sess_sid Parameter Buffer Overflow Attempt CVE-2013-3623 (web_server.rules)
• 2017687 - ET WEB_SERVER Possible SUPERMICRO IPMI close_window.cgi ACT Parameter Buffer Overflow Attempt CVE-2013-3623 (web_server.rules)
• 2018313 - ET WEB_CLIENT Possible Word RTF Memory Corruption Payload Inbound (CVE-2014-1761) (web_client.rules)
• 2022930 - ET EXPLOIT Possible CVE-2016-2211 Symantec Cab Parsing Buffer Overflow (exploit.rules)
• 2033451 - ET EXPLOIT Possible Dovecot Memory Corruption Inbound (CVE-2019-11500) (exploit.rules)
• 2033733 - ET EXPLOIT Microsoft Windows VBScript Engine VbsErase Memory Corruption (CVE-2019-0667) (exploit.rules)
• 2033781 - ET EXPLOIT Use-After-Free in QuickTimePluginReplacement (CVE-2021-1879) (exploit.rules)
• 2101409 - GPL SNMP SNMP community string buffer overflow attempt (snmp.rules)
• 2101422 - GPL SNMP community string buffer overflow attempt with evasion (snmp.rules)
• 2101751 - GPL EXPLOIT cachefsd buffer overflow attempt (exploit.rules)
• 2101755 - GPL IMAP partial body buffer overflow attempt (imap.rules)
• 2101792 - GPL MISC return code buffer overflow attempt (misc.rules)
• 2101808 - GPL EXPLOIT apache chunked encoding memory corruption exploit attempt (exploit.rules)
• 2101898 - GPL EXPLOIT kadmind buffer overflow attempt 2 (exploit.rules)
• 2101899 - GPL EXPLOIT kadmind buffer overflow attempt 3 (exploit.rules)
• 2101900 - GPL EXPLOIT successful kadmind buffer overflow attempt (exploit.rules)
• 2101901 - GPL EXPLOIT successful kadmind buffer overflow attempt (exploit.rules)
• 2101993 - GPL IMAP login literal buffer overflow attempt (imap.rules)
• 2102046 - GPL IMAP partial body.peek buffer overflow attempt (imap.rules)
• 2102094 - GPL RPC CMSD UDP CMSD_CREATE array buffer overflow attempt (rpc.rules)
• 2102095 - GPL RPC CMSD TCP CMSD_CREATE array buffer overflow attempt (rpc.rules)
• 2102107 - GPL IMAP create buffer overflow attempt (imap.rules)
• 2102120 - GPL IMAP create literal buffer overflow attempt (imap.rules)
• 2102338 - GPL FTP LIST buffer overflow attempt (ftp.rules)
• 2102584 - GPL P2P eMule buffer overflow attempt (p2p.rules)
• 2102608 - GPL SQL sysdbms_repcat_rgt.check_ddl_text buffer overflow attempt (sql.rules)
• 2102612 - GPL SQL sys.dbms_repcat_auth.revoke_surrogate_repcat buffer overflow attempt (sql.rules)
• 2102615 - GPL SQL sys.dbms_repcat_auth.grant_surrogate_repcat buffer overflow attempt (sql.rules)
• 2102617 - GPL SQL sys.dbms_repcat.alter_mview_propagation buffer overflow attempt (sql.rules)
• 2102633 - GPL SQL sys.dbms_rectifier_diff.rectify buffer overflow attempt (sql.rules)
• 2102643 - GPL SQL sys.dbms_repcat_fla.ensure_not_published buffer overflow attempt (sql.rules)
• 2102679 - GPL SQL sys.dbms_system.ksdwrt buffer overflow attempt (sql.rules)
• 2102680 - GPL SQL ctxsys.driddlr.subindexpopulate buffer overflow attempt (sql.rules)
• 2102684 - GPL SQL sys.ltutil.pushdeferredtxns buffer overflow attempt (sql.rules)
• 2102685 - GPL SQL sys.dbms_repcat_rq.add_column buffer overflow attempt (sql.rules)
• 2102686 - GPL SQL sys.dbms_rectifier_diff.differences buffer overflow attempt (sql.rules)
• 2102687 - GPL SQL sys.dbms_internal_repcat.validate buffer overflow attempt (sql.rules)
• 2102688 - GPL SQL sys.dbms_internal_repcat.enable_receiver_trace buffer overflow attempt (sql.rules)
• 2102689 - GPL SQL sys.dbms_internal_repcat.disable_receiver_trace buffer overflow attempt (sql.rules)
• 2102690 - GPL SQL sys.dbms_defer_repcat.enable_propagation_to_dblink buffer overflow attempt (sql.rules)
• 2102691 - GPL SQL sys.dbms_defer_internal_sys.parallel_push_recovery buffer overflow attempt (sql.rules)
• 2102692 - GPL SQL sys.dbms_aqadm_sys.verify_queue_types buffer overflow attempt (sql.rules)
• 2102693 - GPL SQL sys.dbms_aqadm.verify_queue_types_no_queue buffer overflow attempt (sql.rules)
• 2102694 - GPL SQL sys.dbms_aqadm.verify_queue_types_get_nrp buffer overflow attempt (sql.rules)
• 2102695 - GPL SQL sys.dbms_aq_import_internal.aq_table_defn_update buffer overflow attempt (sql.rules)
• 2102696 - GPL SQL sys.dbms_repcat_utl.is_master buffer overflow attempt (sql.rules)
• 2102768 - GPL SQL dbms_repcat.drop_grouped_column buffer overflow attempt (sql.rules)
• 2102813 - GPL SQL sys.dbms_repcat_fla.abort_flavor_definition buffer overflow attempt (sql.rules)
• 2102814 - GPL SQL sys.dbms_repcat_fla.add_object_to_flavor buffer overflow attempt (sql.rules)
• 2102815 - GPL SQL sys.dbms_repcat_fla.begin_flavor_definition buffer overflow attempt (sql.rules)
• 2102816 - GPL SQL sys.dbms_repcat_fla.drop_object_from_flavor buffer overflow attempt (sql.rules)
• 2102817 - GPL SQL sys.dbms_repcat_fla_mas.add_column_group_to_flavor buffer overflow attempt (sql.rules)
• 2102818 - GPL SQL sys.dbms_repcat_fla_mas.add_columns_to_flavor buffer overflow attempt (sql.rules)
• 2102819 - GPL SQL sys.dbms_repcat_fla_mas.drop_column_group_from_flavor buffer overflow attempt (sql.rules)
• 2102820 - GPL SQL sys.dbms_repcat_fla_mas.drop_columns_from_flavor buffer overflow attempt (sql.rules)
• 2102821 - GPL SQL sys.dbms_repcat_fla_mas.obsolete_flavor_definition buffer overflow attempt (sql.rules)
• 2102823 - GPL SQL sys.dbms_repcat_fla_mas.purge_flavor_definition buffer overflow attempt (sql.rules)
• 2102824 - GPL SQL sys.dbms_repcat_fla.set_local_flavor buffer overflow attempt (sql.rules)
• 2102825 - GPL SQL sys.dbms_repcat_fla.validate_flavor_definition buffer overflow attempt (sql.rules)
• 2102826 - GPL SQL sys.dbms_repcat_fla.validate_for_local_flavor buffer overflow attempt (sql.rules)
• 2102827 - GPL SQL sys.dbms_repcat_mas.alter_master_repobject buffer overflow attempt (sql.rules)
• 2102828 - GPL SQL sys.dbms_repcat_mas.comment_on_repgroup buffer overflow attempt (sql.rules)
• 2102829 - GPL SQL sys.dbms_repcat_mas.comment_on_repobject buffer overflow attempt (sql.rules)
• 2102831 - GPL SQL sys.dbms_repcat_mas.create_master_repobject buffer overflow attempt (sql.rules)
• 2102832 - GPL SQL sys.dbms_repcat_mas.do_deferred_repcat_admin buffer overflow attempt (sql.rules)
• 2102833 - GPL SQL sys.dbms_repcat_mas.drop_master_repgroup buffer overflow attempt (sql.rules)
• 2102834 - GPL SQL sys.dbms_repcat_mas.generate_replication_package buffer overflow attempt (sql.rules)
• 2102835 - GPL SQL sys.dbms_repcat_mas.purge_master_log buffer overflow attempt (sql.rules)
• 2102836 - GPL SQL sys.dbms_repcat_mas.relocate_masterdef buffer overflow attempt (sql.rules)
• 2102837 - GPL SQL sys.dbms_repcat_mas.rename_shadow_column_group buffer overflow attempt (sql.rules)
• 2102838 - GPL SQL sys.dbms_repcat_mas.resume_master_activity buffer overflow attempt (sql.rules)
• 2102839 - GPL SQL sys.dbms_repcat_mas.suspend_master_activity buffer overflow attempt (sql.rules)
• 2102840 - GPL SQL sys.dbms_repcat_sna_utl.alter_snapshot_propagation buffer overflow attempt (sql.rules)
• 2102841 - GPL SQL sys.dbms_repcat_sna_utl.create_snapshot_repgroup buffer overflow attempt (sql.rules)
• 2102842 - GPL SQL sys.dbms_repcat_sna_utl.drop_snapshot_repgroup buffer overflow attempt (sql.rules)
• 2102843 - GPL SQL sys.dbms_repcat_sna_utl.drop_snapshot_repobject buffer overflow attempt (sql.rules)
• 2102844 - GPL SQL sys.dbms_repcat_sna_utl.refresh_snapshot_repgroup buffer overflow attempt (sql.rules)
• 2102845 - GPL SQL sys.dbms_repcat_sna_utl.register_snapshot_repgroup buffer overflow attempt (sql.rules)
• 2102846 - GPL SQL sys.dbms_repcat_sna_utl.repcat_import_check buffer overflow attempt (sql.rules)
• 2102847 - GPL SQL sys.dbms_repcat_sna_utl.unregister_snapshot_repgroup buffer overflow attempt (sql.rules)
• 2102848 - GPL SQL sys.dbms_repcat_utl4.drop_master_repobject buffer overflow attempt (sql.rules)
• 2102849 - GPL SQL sys.dbms_repcat_utl.drop_an_object buffer overflow attempt (sql.rules)
• 2102858 - GPL SQL sys.dbms_repcat_conf.add_delete_resolution buffer overflow attempt (sql.rules)
• 2102860 - GPL SQL sys.dbms_repcat_conf.add_priority_date buffer overflow attempt (sql.rules)
• 2102861 - GPL SQL sys.dbms_repcat_conf.add_priority_nchar buffer overflow attempt (sql.rules)
• 2102862 - GPL SQL sys.dbms_repcat_conf.add_priority_number buffer overflow attempt (sql.rules)
• 2102863 - GPL SQL sys.dbms_repcat_conf.add_priority_nvarchar2 buffer overflow attempt (sql.rules)
• 2102864 - GPL SQL sys.dbms_repcat_conf.add_priority_raw buffer overflow attempt (sql.rules)
• 2102865 - GPL SQL sys.dbms_repcat_conf.add_priority_varchar2 buffer overflow attempt (sql.rules)
• 2102866 - GPL SQL sys.dbms_repcat_conf.add_site_priority_site buffer overflow attempt (sql.rules)
• 2102867 - GPL SQL sys.dbms_repcat_conf.add_unique_resolution buffer overflow attempt (sql.rules)
• 2102868 - GPL SQL sys.dbms_repcat_conf.add_update_resolution buffer overflow attempt (sql.rules)
• 2102869 - GPL SQL sys.dbms_repcat_conf.alter_priority_char buffer overflow attempt (sql.rules)
• 2102870 - GPL SQL sys.dbms_repcat_conf.alter_priority_date buffer overflow attempt (sql.rules)
• 2102871 - GPL SQL sys.dbms_repcat_conf.alter_priority_nchar buffer overflow attempt (sql.rules)
• 2102872 - GPL SQL sys.dbms_repcat_conf.alter_priority_number buffer overflow attempt (sql.rules)
• 2102874 - GPL SQL sys.dbms_repcat_conf.alter_priority_raw buffer overflow attempt (sql.rules)
• 2102875 - GPL SQL sys.dbms_repcat_conf.alter_priority buffer overflow attempt (sql.rules)
• 2102876 - GPL SQL sys.dbms_repcat_conf.alter_priority_varchar2 buffer overflow attempt (sql.rules)
• 2102878 - GPL SQL sys.dbms_repcat_conf.alter_site_priority buffer overflow attempt (sql.rules)
• 2102879 - GPL SQL sys.dbms_repcat_conf.cancel_statistics buffer overflow attempt (sql.rules)
• 2102880 - GPL SQL sys.dbms_repcat_conf.comment_on_delete_resolution buffer overflow attempt (sql.rules)
• 2102881 - GPL SQL sys.dbms_repcat_conf.comment_on_priority_group buffer overflow attempt (sql.rules)
• 2102882 - GPL SQL sys.dbms_repcat_conf.comment_on_site_priority buffer overflow attempt (sql.rules)
• 2102883 - GPL SQL sys.dbms_repcat_conf.comment_on_unique_resolution buffer overflow attempt (sql.rules)
• 2102884 - GPL SQL sys.dbms_repcat_conf.comment_on_update_resolution buffer overflow attempt (sql.rules)
• 2102885 - GPL SQL sys.dbms_repcat_conf.define_priority_group buffer overflow attempt (sql.rules)
• 2102886 - GPL SQL sys.dbms_repcat_conf.define_site_priority buffer overflow attempt (sql.rules)
• 2102887 - GPL SQL sys.dbms_repcat_conf.drop_delete_resolution buffer overflow attempt (sql.rules)
• 2102888 - GPL SQL sys.dbms_repcat_conf.drop_priority_char buffer overflow attempt (sql.rules)
• 2102889 - GPL SQL sys.dbms_repcat_conf.drop_priority_date buffer overflow attempt (sql.rules)
• 2102890 - GPL SQL sys.dbms_repcat_conf.drop_priority_nchar buffer overflow attempt (sql.rules)
• 2102891 - GPL SQL sys.dbms_repcat_conf.drop_priority_number buffer overflow attempt (sql.rules)
• 2102892 - GPL SQL sys.dbms_repcat_conf.drop_priority_nvarchar2 buffer overflow attempt (sql.rules)
• 2102894 - GPL SQL sys.dbms_repcat_conf.drop_priority buffer overflow attempt (sql.rules)
• 2102896 - GPL SQL sys.dbms_repcat_conf.drop_site_priority_site buffer overflow attempt (sql.rules)
• 2102897 - GPL SQL sys.dbms_repcat_conf.drop_site_priority buffer overflow attempt (sql.rules)
• 2102898 - GPL SQL sys.dbms_repcat_conf.drop_unique_resolution buffer overflow attempt (sql.rules)
• 2102899 - GPL SQL sys.dbms_repcat_conf.drop_update_resolution buffer overflow attempt (sql.rules)
• 2102900 - GPL SQL sys.dbms_repcat_conf.purge_statistics buffer overflow attempt (sql.rules)
• 2102901 - GPL SQL sys.dbms_repcat_conf.register_statistics buffer overflow attempt (sql.rules)
• 2102902 - GPL SQL sys.dbms_repcat_sna.alter_snapshot_propagation buffer overflow attempt (sql.rules)
• 2102903 - GPL SQL sys.dbms_repcat_sna.create_snapshot_repgroup buffer overflow attempt (sql.rules)
• 2102904 - GPL SQL sys.dbms_repcat_sna.create_snapshot_repobject buffer overflow attempt (sql.rules)
• 2102905 - GPL SQL sys.dbms_repcat_sna.create_snapshot_repschema buffer overflow attempt (sql.rules)
• 2102906 - GPL SQL sys.dbms_repcat_sna.drop_snapshot_repgroup buffer overflow attempt (sql.rules)
• 2102907 - GPL SQL sys.dbms_repcat_sna.drop_snapshot_repobject buffer overflow attempt (sql.rules)
• 2102908 - GPL SQL sys.dbms_repcat_sna.drop_snapshot_repschema buffer overflow attempt (sql.rules)
• 2102909 - GPL SQL sys.dbms_repcat_sna.generate_snapshot_support buffer overflow attempt (sql.rules)
• 2102910 - GPL SQL sys.dbms_repcat_sna.refresh_snapshot_repgroup buffer overflow attempt (sql.rules)
• 2102911 - GPL SQL sys.dbms_repcat_sna.refresh_snapshot_repschema buffer overflow attempt (sql.rules)
• 2102912 - GPL SQL sys.dbms_repcat_sna.register_snapshot_repgroup buffer overflow attempt (sql.rules)
• 2102913 - GPL SQL sys.dbms_repcat_sna.repcat_import_check buffer overflow attempt (sql.rules)
• 2102914 - GPL SQL sys.dbms_repcat_sna.set_local_flavor buffer overflow attempt (sql.rules)
• 2102915 - GPL SQL sys.dbms_repcat_sna.switch_snapshot_master buffer overflow attempt (sql.rules)
• 2102916 - GPL SQL sys.dbms_repcat_sna.unregister_snapshot_repgroup buffer overflow attempt (sql.rules)
• 2102917 - GPL SQL sys.dbms_repcat_sna_utl.switch_snapshot_master buffer overflow attempt (sql.rules)
• 2102918 - GPL SQL sys.dbms_repcat_sna.validate_for_local_flavor buffer overflow attempt (sql.rules)
• 2102919 - GPL SQL sys.dbms_repcat_untrusted.register_snapshot_repgroup buffer overflow attempt (sql.rules)
• 2800023 - ETPRO EXPLOIT CA License Software GETCONFIG Buffer Overflow (exploit.rules)
• 2800024 - ETPRO EXPLOIT CA License Software GCR Buffer Overflow (exploit.rules)
• 2800025 - ETPRO EXPLOIT CA License Software GCR Buffer Overflow (exploit.rules)
• 2800026 - ETPRO EXPLOIT CA License Software PUTOLF Buffer Overflow (exploit.rules)
• 2800027 - ETPRO EXPLOIT CA License Software Invalid Command Buffer Overflow (exploit.rules)
• 2800030 - ETPRO TELNET Multiple Vendor Telnet Client LINEMODE Buffer Overflow (telnet.rules)
• 2800031 - ETPRO TELNET Multiple Vendor Telnet Client env_opt_add Buffer Overflow (telnet.rules)
• 2800035 - ETPRO EXPLOIT CA BrightStor ARCserve Backup Universal Agent Buffer Overflow (exploit.rules)
• 2800037 - ETPRO EXPLOIT CVS Annotate Command Long Revision String Buffer Overflow (exploit.rules)
• 2800040 - ETPRO WEB_SPECIFIC_APPS MailEnable HTTP Authorization Header Buffer Overflow (web_specific_apps.rules)
• 2800041 - ETPRO NETBIOS Microsoft Windows Message Queuing Buffer Overflow 1 (netbios.rules)
• 2800042 - ETPRO NETBIOS Microsoft Windows Message Queuing Buffer Overflow 2 (netbios.rules)
• 2800043 - ETPRO NETBIOS Microsoft Windows Message Queuing Buffer Overflow 3 (netbios.rules)
• 2800044 - ETPRO NETBIOS Microsoft Windows Message Queuing Buffer Overflow 4 (netbios.rules)
• 2800045 - ETPRO NETBIOS Microsoft Windows Message Queuing Buffer Overflow 5 (netbios.rules)
• 2800046 - ETPRO NETBIOS Microsoft Windows Message Queuing Buffer Overflow 6 (netbios.rules)
• 2800047 - ETPRO NETBIOS Microsoft Windows Message Queuing Buffer Overflow 7 (netbios.rules)
• 2800048 - ETPRO NETBIOS Microsoft Windows Message Queuing Buffer Overflow 8 (netbios.rules)
• 2800049 - ETPRO NETBIOS Microsoft Windows Message Queuing Buffer Overflow 9 (netbios.rules)
• 2800050 - ETPRO NETBIOS Microsoft Windows Message Queuing Buffer Overflow 10 (netbios.rules)
• 2800051 - ETPRO NETBIOS Microsoft Windows Message Queuing Buffer Overflow 11 (netbios.rules)
• 2800053 - ETPRO EXPLOIT MySQL MaxDB Webtool GET Command Buffer Overflow (exploit.rules)
• 2800054 - ETPRO EXPLOIT Novell ZENworks Remote Management Buffer Overflow (exploit.rules)
• 2800055 - ETPRO SMTP Ipswitch IMail IMAP LOGIN Command Buffer Overflow (smtp.rules)
• 2800056 - ETPRO SMTP MailEnable SMTP Authentication Buffer Overflow (smtp.rules)
• 2800059 - ETPRO EXPLOIT Veritas Backup Exec Agent CONNECT_CLIENT_AUTH Buffer Overflow (exploit.rules)
• 2800067 - ETPRO EXPLOIT CA Multiple Products Console Server Login Credentials Handling Buffer Overflow 1 (exploit.rules)
• 2800068 - ETPRO EXPLOIT CA Multiple Products Console Server Login Credentials Handling Buffer Overflow 2 (exploit.rules)
• 2800069 - ETPRO EXPLOIT CA Multiple Products Console Server Login Credentials Handling Buffer Overflow 3 (exploit.rules)
• 2800070 - ETPRO EXPLOIT CA Multiple Products Console Server Login Credentials Handling Buffer Overflow 4 (exploit.rules)
• 2800071 - ETPRO EXPLOIT Symantec Discovery XFERWAN Service Buffer Overflow (exploit.rules)
• 2800075 - ETPRO ACTIVEX Microsoft Internet Explorer COM Object Instantiation Memory Corruption (activex.rules)
• 2800076 - ETPRO ACTIVEX Microsoft Internet Explorer COM Object Instantiation Memory Corruption (activex.rules)
• 2800077 - ETPRO ACTIVEX Microsoft Internet Explorer COM Object Instantiation Memory Corruption (activex.rules)
• 2800078 - ETPRO ACTIVEX Microsoft Internet Explorer COM Object Instantiation Memory Corruption (activex.rules)
• 2800079 - ETPRO ACTIVEX Microsoft Internet Explorer COM Object Instantiation Memory Corruption (activex.rules)
• 2800080 - ETPRO ACTIVEX Microsoft Internet Explorer COM Object Instantiation Memory Corruption (activex.rules)
• 2800081 - ETPRO ACTIVEX Microsoft Internet Explorer COM Object Instantiation Memory Corruption (activex.rules)
• 2800082 - ETPRO ACTIVEX Microsoft Internet Explorer COM Object Instantiation Memory Corruption (activex.rules)
• 2800083 - ETPRO ACTIVEX Microsoft Internet Explorer COM Object Instantiation Memory Corruption (activex.rules)
• 2800084 - ETPRO ACTIVEX Microsoft Internet Explorer COM Object Instantiation Memory Corruption (activex.rules)
• 2800085 - ETPRO ACTIVEX Microsoft Internet Explorer COM Object Instantiation Memory Corruption (activex.rules)
• 2800086 - ETPRO ACTIVEX Microsoft Internet Explorer COM Object Instantiation Memory Corruption (activex.rules)
• 2800087 - ETPRO ACTIVEX Microsoft Internet Explorer COM Object Instantiation Memory Corruption (activex.rules)
• 2800088 - ETPRO ACTIVEX Microsoft Internet Explorer COM Object Instantiation Memory Corruption (activex.rules)
• 2800089 - ETPRO WEB_CLIENT Microsoft Internet Explorer CSS Tag Handling Memory Corruption (web_client.rules)
• 2800090 - ETPRO EXPLOIT Ingres Database uuid_from_char Stack Buffer Overflow (exploit.rules)
• 2800092 - ETPRO RPC MIT Kerberos kadmind RPC Library Unix Authentication Buffer Overflow (rpc.rules)
• 2800094 - ETPRO EXPLOIT Microsoft Windows Active Directory Crafted LDAP Request Buffer Overflow (exploit.rules)
• 2800095 - ETPRO EXPLOIT Microsoft Windows Active Directory Crafted LDAP Request Buffer Overflow (exploit.rules)
• 2800099 - ETPRO IMAP Ipswitch IMail Server IMAP SEARCH Command Buffer Overflow (imap.rules)
• 2800103 - ETPRO EXPLOIT Borland Interbase Database Service Create-Request Buffer Overflow (exploit.rules)
• 2800107 - ETPRO EXPLOIT HP OpenView Products OVTrace Service Stack Buffer Overflow (exploit.rules)
• 2800110 - ETPRO WEB_CLIENT Microsoft Excel Workspace Index Value Memory Corruption 1 (web_client.rules)
• 2800111 - ETPRO WEB_CLIENT Microsoft Excel Workspace Index Value Memory Corruption 2 (web_client.rules)
• 2800112 - ETPRO WEB_CLIENT Microsoft Excel Workspace Index Value Memory Corruption 3 (web_client.rules)
• 2800113 - ETPRO WEB_CLIENT Microsoft Excel Workspace Index Value Memory Corruption 4 (web_client.rules)
• 2800114 - ETPRO WEB_CLIENT Microsoft Excel Workspace Index Value Memory Corruption (web_client.rules)
• 2800119 - ETPRO ACTIVEX Microsoft Internet Explorer Pdwizard.ocx ActiveX Object Memory Corruption clsid (activex.rules)
• 2800120 - ETPRO ACTIVEX Microsoft Internet Explorer Pdwizard.ocx ActiveX Object Memory Corruption activex (activex.rules)
• 2800121 - ETPRO ACTIVEX Microsoft Internet Explorer Pdwizard.ocx ActiveX Object Memory Corruption (activex.rules)
• 2800124 - ETPRO RPC EMC Legato NetWorker Remote Exec Service Buffer Overflow (rpc.rules)
• 2800125 - ETPRO EXPLOIT Trend Micro ServerProtect RPC NTF_SetPagerNotifyConfig Buffer Overflow 1 (exploit.rules)
• 2800126 - ETPRO EXPLOIT Trend Micro ServerProtect RPC NTF_SetPagerNotifyConfig Buffer Overflow (exploit.rules)
• 2800127 - ETPRO EXPLOIT Trend Micro ServerProtect RPCFN Engine RPC Buffer Overflows 1 (exploit.rules)
• 2800128 - ETPRO EXPLOIT Trend Micro ServerProtect RPCFN Engine RPC Buffer Overflows 2 (exploit.rules)
• 2800129 - ETPRO EXPLOIT Trend Micro ServerProtect RPCFN Engine RPC Buffer Overflows 3 (exploit.rules)
• 2800130 - ETPRO EXPLOIT Trend Micro ServerProtect RPCFN Engine RPC Buffer Overflows 4 (exploit.rules)
• 2800131 - ETPRO EXPLOIT Trend Micro ServerProtect RPCFN Engine RPC Buffer Overflows 5 (exploit.rules)
• 2800132 - ETPRO EXPLOIT Trend Micro ServerProtect RPCFN Engine RPC Buffer Overflows 6 (exploit.rules)
• 2800133 - ETPRO EXPLOIT Trend Micro ServerProtect RPC RPCFN_CMON_SetSvcImpersonateUser Buffer Overflow (exploit.rules)
• 2800134 - ETPRO EXPLOIT Trend Micro ServerProtect RPC RPCFN_CMON_SetSvcImpersonateUser Buffer Overflow 2 (exploit.rules)
• 2800135 - ETPRO EXPLOIT Trend Micro ServerProtect SPNT Engine RPC Buffer Overflows 1 (exploit.rules)
• 2800136 - ETPRO EXPLOIT Trend Micro ServerProtect SPNT Engine RPC Buffer Overflows 2 (exploit.rules)
• 2800137 - ETPRO EXPLOIT Trend Micro ServerProtect SPNT Engine RPC Buffer Overflows 3 (exploit.rules)
• 2800138 - ETPRO EXPLOIT Trend Micro ServerProtect SPNT Engine RPC Buffer Overflows 4 (exploit.rules)
• 2800139 - ETPRO EXPLOIT Trend Micro ServerProtect EarthAgent RPC RPCFN_CopyAUSrc Buffer Overflow 1 (exploit.rules)
• 2800140 - ETPRO EXPLOIT Trend Micro ServerProtect EarthAgent RPC RPCFN_CopyAUSrc Buffer Overflow 2 (exploit.rules)
• 2800142 - ETPRO EXPLOIT Motorola Timbuktu Crafted Login Request Buffer Overflow 1 (exploit.rules)
• 2800143 - ETPRO EXPLOIT Motorola Timbuktu Crafted Login Request Buffer Overflow 2 (exploit.rules)
• 2800145 - ETPRO RPC MIT Kerberos kadmind RPC Library RPCSEC_GSS Authentication Buffer Overflow (rpc.rules)
• 2800147 - ETPRO WEB_CLIENT Microsoft Visual Basic 6.0 VBP Project File Handling Buffer Overflow Attempt (web_client.rules)
• 2800148 - ETPRO ACTIVEX Microsoft SQL Server Distributed Management Objects Buffer Overflow (activex.rules)
• 2800153 - ETPRO EXPLOIT IBM Tivoli Storage Manager Express CAD Service Buffer Overflow (exploit.rules)
• 2800154 - ETPRO EXPLOIT CA ARCserve Backup for Laptops and Desktops LGServer Multiple Buffer Overflows 1 (exploit.rules)
• 2800155 - ETPRO EXPLOIT CA ARCserve Backup for Laptops and Desktops LGServer Multiple Buffer Overflows 2 (exploit.rules)
• 2800156 - ETPRO EXPLOIT CA ARCserve Backup for Laptops and Desktops LGServer Multiple Buffer Overflows 3 (exploit.rules)
• 2800157 - ETPRO EXPLOIT CA ARCserve Backup for Laptops and Desktops LGServer Multiple Buffer Overflows 4 (exploit.rules)
• 2800158 - ETPRO EXPLOIT CA ARCserve Backup for Laptops and Desktops LGServer Multiple Buffer Overflows 5 (exploit.rules)
• 2800159 - ETPRO EXPLOIT CA ARCserve Backup for Laptops and Desktops LGServer Multiple Buffer Overflows 6 (exploit.rules)
• 2800160 - ETPRO EXPLOIT CA ARCserve Backup for Laptops and Desktops LGServer Multiple Buffer Overflows 7 (exploit.rules)
• 2800161 - ETPRO EXPLOIT CA ARCserve Backup for Laptops and Desktops LGServer Multiple Buffer Overflows 8 (exploit.rules)
• 2800162 - ETPRO EXPLOIT CA ARCserve Backup for Laptops and Desktops LGServer Multiple Buffer Overflows 9 (exploit.rules)
• 2800163 - ETPRO EXPLOIT CA ARCserve Backup for Laptops and Desktops LGServer Multiple Buffer Overflows 10 (exploit.rules)
• 2800164 - ETPRO EXPLOIT CA BrightStor ARCServe Backup LGServer Authentication Password Buffer Overflow (exploit.rules)
• 2800165 - ETPRO EXPLOIT CA BrightStor ARCServe Backup LGServer Authentication Password Buffer Overflow (exploit.rules)
• 2800172 - ETPRO EXPLOIT CA Multiple Products DBASVR RPC Server Crafted Pointer Buffer Overflow 1 (exploit.rules)
• 2800173 - ETPRO EXPLOIT CA Multiple Products DBASVR RPC Server Crafted Pointer Buffer Overflow 2 (exploit.rules)
• 2800174 - ETPRO EXPLOIT CA Multiple Products DBASVR RPC Server Crafted Pointer Buffer Overflow 3 (exploit.rules)
• 2800175 - ETPRO EXPLOIT CA Multiple Products DBASVR RPC Server Crafted Pointer Buffer Overflow 4 (exploit.rules)
• 2800176 - ETPRO EXPLOIT CA Multiple Products DBASVR RPC Server Crafted Pointer Buffer Overflow 5 (exploit.rules)
• 2800177 - ETPRO EXPLOIT CA Multiple Products DBASVR RPC Server Crafted Pointer Buffer Overflow 6 (exploit.rules)
• 2800178 - ETPRO EXPLOIT CA Multiple Products DBASVR RPC Server Crafted Pointer Buffer Overflow 7 (exploit.rules)
• 2800179 - ETPRO EXPLOIT CA Multiple Products DBASVR RPC Server Crafted Pointer Buffer Overflow 8 (exploit.rules)
• 2800180 - ETPRO EXPLOIT CA Multiple Products DBASVR RPC Server Crafted Pointer Buffer Overflow 9 (exploit.rules)
• 2800181 - ETPRO EXPLOIT CA Multiple Products DBASVR RPC Server Crafted Pointer Buffer Overflow 10 (exploit.rules)
• 2800185 - ETPRO ACTIVEX RealNetworks RealPlayer Playlist Handling Buffer Overflow Object (activex.rules)
• 2800186 - ETPRO ACTIVEX RealNetworks RealPlayer Playlist Handling Buffer Overflow (activex.rules)
• 2800187 - ETPRO IMAP IBM Lotus Domino IMAP Server Buffer Overflow 1 (imap.rules)
• 2800188 - ETPRO IMAP IBM Lotus Domino IMAP Server Buffer Overflow 2 (imap.rules)
• 2800189 - ETPRO IMAP IBM Lotus Domino IMAP Server Buffer Overflow 3 (imap.rules)
• 2800190 - ETPRO SMTP IBM Lotus Notes MIF Attachment Viewer Buffer Overflow 1 (smtp.rules)
• 2800191 - ETPRO SMTP IBM Lotus Notes MIF Attachment Viewer Buffer Overflow 2 (smtp.rules)
• 2800192 - ETPRO WEB_CLIENT RealNetworks RealPlayer MP3 Files Processing Buffer Overflow (web_client.rules)
• 2800202 - ETPRO WEB_CLIENT Apple QuickTime PICT Image Poly Structure Memory Corruption 1 (web_client.rules)
• 2800203 - ETPRO WEB_CLIENT Apple QuickTime PICT Image Poly Structure Memory Corruption 2 (web_client.rules)
• 2800204 - ETPRO WEB_CLIENT Apple QuickTime PICT Image Poly Structure Memory Corruption 3 (web_client.rules)
• 2800205 - ETPRO WEB_CLIENT Apple QuickTime PICT Image Poly Structure Memory Corruption 4 (web_client.rules)
• 2800206 - ETPRO WEB_CLIENT Apple QuickTime PICT Image Poly Structure Memory Corruption 5 (web_client.rules)
• 2800208 - ETPRO WEB_CLIENT Apple QuickTime Panorama Sample Atoms Movie File Handling Buffer Overflow (web_client.rules)
• 2800209 - ETPRO SQL Oracle Database Server XDB PITRIG_DROPMETADATA Procedure Buffer Overflow (sql.rules)
• 2800210 - ETPRO WEB_CLIENT FLAC Project libFLAC VORBIS Comment String Size Buffer Overflow 1 (web_client.rules)
• 2800211 - ETPRO WEB_CLIENT FLAC Project libFLAC VORBIS Comment String Size Buffer Overflow 2 (web_client.rules)
• 2800212 - ETPRO WEB_CLIENT FLAC Project libFLAC VORBIS Comment String Size Buffer Overflow 3 (web_client.rules)
• 2800213 - ETPRO WEB_CLIENT FLAC Project libFLAC VORBIS Comment String Size Buffer Overflow 4 (web_client.rules)
• 2800214 - ETPRO WEB_CLIENT FLAC Project libFLAC VORBIS Comment String Size Buffer Overflow 5 (web_client.rules)
• 2800215 - ETPRO WEB_CLIENT FLAC Project libFLAC VORBIS Comment String Size Buffer Overflow 6 (web_client.rules)
• 2800216 - ETPRO ACTIVEX BitDefender Online Scanner ActiveX Control Buffer Overflow 1 (activex.rules)
• 2800217 - ETPRO ACTIVEX BitDefender Online Scanner ActiveX Control Buffer Overflow 2 (activex.rules)
• 2800218 - ETPRO ACTIVEX BitDefender Online Scanner ActiveX Control Buffer Overflow 3 (activex.rules)
• 2800219 - ETPRO ACTIVEX BitDefender Online Scanner ActiveX Control Buffer Overflow 4 (activex.rules)
• 2800220 - ETPRO ACTIVEX BitDefender Online Scanner ActiveX Control Buffer Overflow 5 (activex.rules)
• 2800221 - ETPRO ACTIVEX BitDefender Online Scanner ActiveX Control Buffer Overflow 6 (activex.rules)
• 2800222 - ETPRO WEB_CLIENT FLAC Project libFLAC Picture Metadata MIME-Type Size Buffer Overflow 1 (web_client.rules)
• 2800223 - ETPRO WEB_CLIENT FLAC Project libFLAC Picture Metadata MIME-Type Size Buffer Overflow 2 (web_client.rules)
• 2800224 - ETPRO WEB_CLIENT FLAC Project libFLAC Picture Metadata MIME-Type Size Buffer Overflow 3 (web_client.rules)
• 2800226 - ETPRO WEB_CLIENT FLAC Project libFLAC Picture Metadata Picture Description Size Buffer Overflow 1 (web_client.rules)
• 2800227 - ETPRO WEB_CLIENT FLAC Project libFLAC Picture Metadata Picture Description Size Buffer Overflow 2 (web_client.rules)
• 2800228 - ETPRO WEB_CLIENT FLAC Project libFLAC Picture Metadata Picture Description Size Buffer Overflow 3 (web_client.rules)
• 2800229 - ETPRO WEB_CLIENT FLAC Project libFLAC Picture Metadata Picture Description Size Buffer Overflow 4 (web_client.rules)
• 2800230 - ETPRO EXPLOIT Apple QuickTime RTSP Response Crafted Content-Type Header Buffer Overflow 1 (exploit.rules)
• 2800231 - ETPRO EXPLOIT Apple QuickTime RTSP Response Crafted Content-Type Header Buffer Overflow 2 (exploit.rules)
• 2800232 - ETPRO WEB_CLIENT ACD Systems ACDSee Products XPM Values Section Buffer Overflow (web_client.rules)
• 2800233 - ETPRO WEB_CLIENT ACD Systems ACDSee Products XPM Values Section Buffer Overflow (web_client.rules)
• 2800234 - ETPRO EXPLOIT HP OpenView Network Node Manager CGI Application Buffer Overflow (exploit.rules)
• 2800236 - ETPRO NETBIOS Samba Domain Controller Service Crafted Mailslot Name Buffer Overflow (netbios.rules)
• 2800241 - ETPRO WEB_CLIENT Microsoft Internet Explorer DHTML Objects Memory Corruption (web_client.rules)
• 2800243 - ETPRO WEB_CLIENT Microsoft Internet Explorer DOM Object Cache Management Memory Corruption (web_client.rules)
• 2800245 - ETPRO NETBIOS Microsoft Windows Message Queuing Service String Buffer Overflow 1 (netbios.rules)
• 2800246 - ETPRO NETBIOS Microsoft Windows Message Queuing Service String Buffer Overflow 2 (netbios.rules)
• 2800247 - ETPRO NETBIOS Microsoft Windows Message Queuing Service String Buffer Overflow 3 (netbios.rules)
• 2800248 - ETPRO NETBIOS Microsoft Windows Message Queuing Service String Buffer Overflow 4 (netbios.rules)
• 2800250 - ETPRO NETBIOS Microsoft Windows Message Queuing Service String Buffer Overflow 5 (netbios.rules)
• 2800251 - ETPRO NETBIOS Microsoft Windows Message Queuing Service String Buffer Overflow 6 (netbios.rules)
• 2800252 - ETPRO NETBIOS Microsoft Windows Message Queuing Service String Buffer Overflow 7 (netbios.rules)
• 2800253 - ETPRO NETBIOS Microsoft Windows Message Queuing Service String Buffer Overflow 8 (netbios.rules)
• 2800263 - ETPRO WEB_CLIENT Macrovision InstallShield Update Service isusweb.dll Remote Buffer Overflow (DownloadAndExecute) (web_client.rules)
• 2800265 - ETPRO WEB_CLIENT Macrovision InstallShield Update Service isusweb.dll Remote Buffer Overflow 2 (web_client.rules)
• 2800266 - ETPRO SQL MySQL yaSSL SSL Hello Message Buffer Overflow (sql.rules)
• 2800267 - ETPRO SQL MySQL yaSSL SSL Hello Message Buffer Overflow 2 (sql.rules)
• 2800279 - ETPRO WEB_CLIENT Apple QuickTime Image Descriptor Atom Parsing Memory Corruption (web_client.rules)
• 2800281 - ETPRO EXPLOIT Citrix Systems Multiple Products IMA Service Buffer Overflow (exploit.rules)
• 2800282 - ETPRO EXPLOIT Nullsoft Winamp Ultravox Streaming Metadata Parsing Stack Buffer Overflow 1 (exploit.rules)
• 2800283 - ETPRO EXPLOIT Nullsoft Winamp Ultravox Streaming Metadata Parsing Stack Buffer Overflow 2 (exploit.rules)
• 2800284 - ETPRO EXPLOIT Firebird Database Server Username Handling Buffer Overflow (exploit.rules)
• 2800285 - ETPRO WEB_CLIENT Microsoft Internet Explorer HTML Rendering Memory Corruption (web_client.rules)
• 2800289 - ETPRO WEB_CLIENT Microsoft Internet Explorer ANIMATEMOTION Properties Assignment Memory Corruption 1 (web_client.rules)
• 2800290 - ETPRO WEB_CLIENT Microsoft Internet Explorer ANIMATEMOTION Properties Assignment Memory Corruption 2 (web_client.rules)
• 2800291 - ETPRO WEB_CLIENT Microsoft Internet Explorer ANIMATEMOTION Properties Assignment Memory Corruption 3 (web_client.rules)
• 2800292 - ETPRO EXPLOIT Sybase SQL Anywhere MobiLink Crafted Strings Buffer Overflow 1 (exploit.rules)
• 2800293 - ETPRO EXPLOIT Sybase SQL Anywhere MobiLink Crafted Strings Buffer Overflow 2 (exploit.rules)
• 2800294 - ETPRO EXPLOIT Sybase SQL Anywhere MobiLink Crafted Strings Buffer Overflow 3 (exploit.rules)
• 2800295 - ETPRO EXPLOIT Symantec VERITAS Storage Foundation Administrator Service Buffer Overflow (exploit.rules)
• 2800296 - ETPRO ACTIVEX Symantec Backup Exec for Windows Server Scheduler ActiveX Control Buffer Overflow (activex.rules)
• 2800297 - ETPRO ACTIVEX Symantec Backup Exec for Windows Server Scheduler ActiveX Control Buffer Overflow (activex.rules)
• 2800303 - ETPRO WEB_CLIENT Sun Java Web Start Charset Encoding Stack Buffer Overflow (web_client.rules)
• 2800304 - ETPRO ACTIVEX Microsoft Office Web Components URL Parsing Buffer Overflow (activex.rules)
• 2800305 - ETPRO ACTIVEX Microsoft Office Web Components URL Parsing Buffer Overflow (activex.rules)
• 2800312 - ETPRO WEB_SERVER Cisco Secure Access Control Server UCP Application CSuserCGI.exe Buffer Overflow (web_server.rules)
• 2800316 - ETPRO IMAP Alt-N MDaemon IMAP Server FETCH Command Buffer Overflow (imap.rules)
• 2800319 - ETPRO ACTIVEX CA Multiple Products ActiveX Control ListCtrl AddColumn Buffer Overflow 1 (activex.rules)
• 2800320 - ETPRO ACTIVEX CA Multiple Products ActiveX Control ListCtrl AddColumn Buffer Overflow 4 (activex.rules)
• 2800321 - ETPRO VOIP Asterisk Invalid RTP Payload Type Number Memory Corruption 1 (voip.rules)
• 2800322 - ETPRO VOIP Asterisk Invalid RTP Payload Type Number Memory Corruption 2 (voip.rules)
• 2800325 - ETPRO EXPLOIT GNOME Project libxslt Library RC4 Key String Buffer Overflow 1 (exploit.rules)
• 2800326 - ETPRO EXPLOIT GNOME Project libxslt Library RC4 Key String Buffer Overflow 2 (exploit.rules)
• 2800327 - ETPRO EXPLOIT GNOME Project libxslt Library RC4 Key String Buffer Overflow 3 (exploit.rules)
• 2800328 - ETPRO EXPLOIT CA ARCserve Backup for Laptops and Desktops LGServer Handshake Buffer Overflow 1 (exploit.rules)
• 2800329 - ETPRO EXPLOIT CA ARCserve Backup for Laptops and Desktops LGServer Handshake Buffer Overflow 2 (exploit.rules)
• 2800330 - ETPRO EXPLOIT CA ARCserve Backup for Laptops and Desktops LGServer Handshake Buffer Overflow 3 (exploit.rules)
• 2800331 - ETPRO EXPLOIT CA ARCserve Backup for Laptops and Desktops LGServer Handshake Buffer Overflow 4 (exploit.rules)
• 2800332 - ETPRO EXPLOIT CA ARCserve Backup for Laptops and Desktops LGServer Handshake Buffer Overflow 5 (exploit.rules)
• 2800333 - ETPRO EXPLOIT CA ARCserve Backup for Laptops and Desktops LGServer Handshake Buffer Overflow 6 (exploit.rules)
• 2800334 - ETPRO EXPLOIT CA ARCserve Backup for Laptops and Desktops LGServer Handshake Buffer Overflow 7 (exploit.rules)
• 2800335 - ETPRO ACTIVEX Cisco Webex Meeting Manager atucfobj ActiveX Control Buffer Overflow 1 (activex.rules)
• 2800336 - ETPRO ACTIVEX Cisco Webex Meeting Manager atucfobj ActiveX Control Buffer Overflow 2 (activex.rules)
• 2800337 - ETPRO ACTIVEX Cisco Webex Meeting Manager atucfobj ActiveX Control Buffer Overflow 3 (activex.rules)
• 2800338 - ETPRO ACTIVEX Cisco Webex Meeting Manager atucfobj ActiveX Control Buffer Overflow 4 (activex.rules)
• 2800339 - ETPRO ACTIVEX Cisco Webex Meeting Manager atucfobj ActiveX Control Buffer Overflow 5 (activex.rules)
• 2800344 - ETPRO EXPLOIT Openwsman HTTP Basic Authentication Buffer Overflow (exploit.rules)
• 2800347 - ETPRO ACTIVEX VMware COM API ActiveX Control Buffer Overflow (activex.rules)
• 2800348 - ETPRO ACTIVEX VMware COM API ActiveX Control Buffer Overflow (activex.rules)
• 2800349 - ETPRO ACTIVEX VMware COM API ActiveX Control Buffer Overflow (activex.rules)
• 2800350 - ETPRO WEB_CLIENT Microsoft Windows Graphics Rendering Engine VML Gradient Buffer Overflow 1 (web_client.rules)
• 2800351 - ETPRO WEB_CLIENT Microsoft Windows Graphics Rendering Engine VML Gradient Buffer Overflow 2 (web_client.rules)
• 2800353 - ETPRO ACTIVEX Microsoft SQL Server 2000 Client Components ActiveX Control Buffer Overflow 1 (activex.rules)
• 2800354 - ETPRO ACTIVEX Microsoft SQL Server 2000 Client Components ActiveX Control Buffer Overflow 2 (activex.rules)
• 2800356 - ETPRO EXPLOIT Trend Micro OfficeScan Server cgiRecvFile Buffer Overflow (exploit.rules)
• 2800357 - ETPRO EXPLOIT IBM DB2 Universal Database XML Query Buffer Overflow (exploit.rules)
• 2800360 - ETPRO ACTIVEX Macrovision InstallShield Update Service Agent ActiveX Memory Corruption (activex.rules)
• 2800362 - ETPRO SCADA DATAC Control RealWin SCADA System Crafted Packet Handling Buffer Overflow (scada.rules)
• 2800376 - ETPRO NETBIOS Microsoft Windows SMB Search Request Buffer Overflow 1 (netbios.rules)
• 2800377 - ETPRO NETBIOS Microsoft Windows SMB Search Request Buffer Overflow 2 (netbios.rules)
• 2800379 - ETPRO EXPLOIT Sun Solstice AdminSuite sadmind service adm_build_path Buffer Overflow high ports (exploit.rules)
• 2800381 - ETPRO EXPLOIT Sun Solstice AdminSuite sadmind service adm_build_path Buffer Overflow (exploit.rules)
• 2800382 - ETPRO EXPLOIT Trend Micro OfficeScan Multiple CGI Modules HTTP Form Processing Buffer Overflow (exploit.rules)
• 2800385 - ETPRO WEB_CLIENT Adobe Reader and Acrobat util.printf Stack Buffer Overflow 1 (web_client.rules)
• 2800386 - ETPRO WEB_CLIENT Adobe Reader and Acrobat util.printf Stack Buffer Overflow 2 (web_client.rules)
• 2800390 - ETPRO WEB_CLIENT VideoLAN VLC Media Player RealText File Buffer Overflow 1 (web_client.rules)
• 2800396 - ETPRO CHAT Cerulean Studios Trillian Image Filename XML Tag Stack Buffer Overflow (chat.rules)
• 2800397 - ETPRO CHAT Cerulean Studios Trillian AIM XML Tag Handling Heap Buffer Overflow (chat.rules)
• 2800403 - ETPRO EXPLOIT Linux Kernel SCTP FWD-TSN Handling Buffer Overflow (exploit.rules)
• 2800404 - ETPRO ACTIVEX SAP GUI TabOne ActiveX Control Caption List Buffer Overflow 1 (activex.rules)
• 2800405 - ETPRO ACTIVEX SAP GUI TabOne ActiveX Control Caption List Buffer Overflow 2 (activex.rules)
• 2800406 - ETPRO ACTIVEX SAP GUI TabOne ActiveX Control Caption List Buffer Overflow 3 (activex.rules)
• 2800407 - ETPRO ACTIVEX SAP GUI TabOne ActiveX Control Caption List Buffer Overflow 4 (activex.rules)
• 2800408 - ETPRO WEB_SERVER HP OpenView Network Node Manager Toolbar.exe HTTP Request Buffer Overflow (web_server.rules)
• 2800409 - ETPRO WEB_CLIENT Nullsoft Winamp AIFF Parsing Heap Buffer Overflow (web_client.rules)
• 2800411 - ETPRO EXPLOIT Oracle Secure Backup NDMP CONECT_CLIENT_AUTH Command Buffer Overflow (exploit.rules)
• 2800412 - ETPRO EXPLOIT Oracle Secure Backup NDMP Packet Handling Multiple Memory Corruption 1 (exploit.rules)
• 2800413 - ETPRO EXPLOIT Oracle Secure Backup NDMP Packet Handling Multiple Memory Corruption 2 (exploit.rules)
• 2800414 - ETPRO EXPLOIT Fujitsu SystemcastWizard Lite PXEService UDP Handling Buffer Overflow (exploit.rules)
• 2800415 - ETPRO ACTIVEX AXIS Communications Camera Control image_pan_tilt Buffer Overflow 2 (activex.rules)
• 2800417 - ETPRO WEB_CLIENT FFmpeg 4xm Processing Memory Corruption (web_client.rules)
• 2800418 - ETPRO SMTP Novell Groupwise Internet Agent RCPT Command Buffer Overflow (smtp.rules)
• 2800420 - ETPRO EXPLOIT UltraVNC VNCViewer Authenticate Buffer Overflow 1 (exploit.rules)
• 2800421 - ETPRO EXPLOIT UltraVNC VNCViewer Authenticate Buffer Overflow 2 (exploit.rules)
• 2800423 - ETPRO EXPLOIT HP OpenView Network Node Manager ovlaunch HTTP Request Buffer Overflow (exploit.rules)
• 2800425 - ETPRO ACTIVEX Research In Motion BlackBerry Application Web Loader ActiveX Control Buffer Overflow 2 (activex.rules)
• 2800426 - ETPRO ACTIVEX Research In Motion BlackBerry Application Web Loader ActiveX Control Buffer Overflow 3 (activex.rules)
• 2800427 - ETPRO ACTIVEX Research In Motion BlackBerry Application Web Loader ActiveX Control Buffer Overflow 5 (activex.rules)
• 2800429 - ETPRO WEB_CLIENT Adobe Multiple Products Embedded JBIG2 Stream Buffer Overflow (web_client.rules)
• 2800432 - ETPRO WEB_CLIENT Mozilla Firefox SVG Data Processing Memory Corruption (web_client.rules)
• 2800439 - ETPRO EXPLOIT HP OpenView Network Node Manager OvAcceptLang Parameter Buffer Overflow (exploit.rules)
• 2800440 - ETPRO EXPLOIT HP OpenView Network Node Manager OvOSLocale Parameter Buffer Overflow (exploit.rules)
• 2800448 - ETPRO EXPLOIT Oracle BEA WebLogic Server Plug-ins Certificate Buffer Overflow 1 (exploit.rules)
• 2800449 - ETPRO EXPLOIT Oracle BEA WebLogic Server Plug-ins Certificate Buffer Overflow 2 (exploit.rules)
• 2800451 - ETPRO EXPLOIT Oracle BEA WebLogic Server Plug-ins Certificate Buffer Overflow 4 (exploit.rules)
• 2800452 - ETPRO EXPLOIT Oracle BEA WebLogic Server Plug-ins Certificate Buffer Overflow 5 (exploit.rules)
• 2800453 - ETPRO EXPLOIT Oracle BEA WebLogic Server Plug-ins Certificate Buffer Overflow 6 (exploit.rules)
• 2800461 - ETPRO WEB_CLIENT Adobe Reader JavaScript getAnnots Method Memory Corruption (web_client.rules)
• 2800462 - ETPRO EXPLOIT Symantec Alert Management System Intel Alert Originator Service Buffer Overflow 1 (exploit.rules)
• 2800463 - ETPRO EXPLOIT Symantec Alert Management System Intel Alert Originator Service Buffer Overflow 2 (exploit.rules)
• 2800465 - ETPRO EXPLOIT IBM Tivoli Storage Manager Client dsmagent.exe NodeName Buffer Overflow 1 (exploit.rules)
• 2800466 - ETPRO EXPLOIT IBM Tivoli Storage Manager Client dsmagent.exe NodeName Buffer Overflow 2 (exploit.rules)
• 2800467 - ETPRO EXPLOIT IBM Tivoli Storage Manager Agent Client Generic String Handling Buffer Overflow (exploit.rules)
• 2800468 - ETPRO EXPLOIT Multiple Vendors NTP Daemon Autokey Stack Buffer Overflow (exploit.rules)
• 2800469 - ETPRO SMTP Novell GroupWise Internet Agent SMTP AUTH LOGIN Command Buffer Overflow (smtp.rules)
• 2800473 - ETPRO WEB_CLIENT Apple iTunes Protocol Handler Stack Buffer Overflow 1 (web_client.rules)
• 2800474 - ETPRO WEB_CLIENT Apple iTunes Protocol Handler Stack Buffer Overflow 2 (web_client.rules)
• 2800475 - ETPRO WEB_CLIENT Apple iTunes Protocol Handler Stack Buffer Overflow 3 (web_client.rules)
• 2800476 - ETPRO WEB_CLIENT Apple iTunes Protocol Handler Stack Buffer Overflow 4 (web_client.rules)
• 2800477 - ETPRO WEB_CLIENT Apple iTunes Protocol Handler Stack Buffer Overflow 5 (web_client.rules)
• 2800486 - ETPRO EXPLOIT Unisys Business Information Server Stack Buffer Overflow (exploit.rules)
• 2800487 - ETPRO EXPLOIT HP OpenView Network Node Manager rping Stack Buffer Overflow 1 (exploit.rules)
• 2800488 - ETPRO EXPLOIT HP OpenView Network Node Manager rping Stack Buffer Overflow 2 (exploit.rules)
• 2800493 - ETPRO FTP Microsoft Internet Information Services FTP Server Remote Buffer Overflow (ftp.rules)
• 2800500 - ETPRO EXPLOIT Dnsmasq TFTP Service Remote Heap Buffer Overflow (exploit.rules)
• 2800501 - ETPRO WEB_CLIENT FFmpeg OGV File Format Memory Corruption (web_client.rules)
• 2800506 - ETPRO ACTIVEX EMC Captiva QuickScan Pro KeyHelp ActiveX Control Buffer Overflow (activex.rules)
• 2800507 - ETPRO ACTIVEX EMC Captiva QuickScan Pro KeyHelp ActiveX Control Buffer Overflow (activex.rules)
• 2800514 - ETPRO WEB_CLIENT IBM Informix Client SDK NFX File Processing Stack Buffer Overflow (web_client.rules)
• 2800515 - ETPRO WEB_CLIENT IBM Informix Client SDK NFX File Processing Stack Buffer Overflow (web_client.rules)
• 2800527 - ETPRO ACTIVEX Symantec Multiple Products AeXNSConsoleUtilities Buffer Overflow 1 (activex.rules)
• 2800528 - ETPRO ACTIVEX Symantec Multiple Products AeXNSConsoleUtilities Buffer Overflow 2 (activex.rules)
• 2800530 - ETPRO ACTIVEX Symantec Multiple Products AeXNSConsoleUtilities Buffer Overflow 1 (activex.rules)
• 2800531 - ETPRO ACTIVEX Symantec Multiple Products AeXNSConsoleUtilities Buffer Overflow 2 (activex.rules)
• 2800535 - ETPRO EXPLOIT HP OpenView Network Node Manager snmp.exe Oid Variable Buffer Overflow (exploit.rules)
• 2800536 - ETPRO WEB_SERVER Sun Java System Web Server WEBDAV Stack Buffer Overflow COPY (web_server.rules)
• 2800537 - ETPRO WEB_SERVER Sun Java System Web Server WEBDAV Stack Buffer Overflow PROPFIND (web_server.rules)
• 2800539 - ETPRO WEB_SERVER Sun Java System Web Server WEBDAV Stack Buffer Overflow PROPPATCH (web_server.rules)
• 2800541 - ETPRO WEB_SERVER Sun Java System Web Server Digest Authorization Buffer Overflow (web_server.rules)
• 2800552 - ETPRO EXPLOIT Microsoft Windows 2000 Media Services Stack Buffer Overflow 1 (exploit.rules)
• 2800553 - ETPRO EXPLOIT Microsoft Windows 2000 Media Services Stack Buffer Overflow 2 (exploit.rules)
• 2800555 - ETPRO EXPLOIT Multiple Vendors AgentX receive_agentx Stack Buffer Overflow 2 (exploit.rules)
• 2800556 - ETPRO EXPLOIT Multiple Vendors AgentX receive_agentx Stack Buffer Overflow (exploit.rules)
• 2800558 - ETPRO EXPLOIT Linux Kernel sctp_process_unk_param SCTPChunkInit Buffer Overflow (exploit.rules)
• 2800559 - ETPRO EXPLOIT RealVNC VNC Server ClientCutText Message Memory Corruption (exploit.rules)
• 2800564 - ETPRO EXPLOIT HP OpenView Network Node Manager netmon.exe Stack Buffer Overflow (exploit.rules)
• 2800567 - ETPRO SQL Oracle MySQL Database COM_FIELD_LIST Buffer Overflow (sql.rules)
• 2800572 - ETPRO EXPLOIT iSCSI target Multiple Implementations iSNS Stack Buffer Overflow (exploit.rules)
• 2800578 - ETPRO SMTP Ipswitch IMail Server List Mailer Reply-To Address Buffer Overflow (smtp.rules)
• 2800579 - ETPRO SMTP Ipswitch IMail Server Mailing List Message Subject Buffer Overflow (smtp.rules)
• 2800580 - ETPRO IMAP Novell GroupWise Internet Agent IMAP Service Stack Buffer Overflow (imap.rules)
• 2800581 - ETPRO EXPLOIT HP OpenView Network Node Manager webappmon.exe execvp_nc Buffer Overflow (exploit.rules)
• 2800589 - ETPRO EXPLOIT IBM Informix Dynamic Server librpc.dll Multiple Buffer Overflow 1 (exploit.rules)
• 2800590 - ETPRO EXPLOIT IBM Informix Dynamic Server librpc.dll Multiple Buffer Overflow 2 (exploit.rules)
• 2800591 - ETPRO EXPLOIT IBM Informix Dynamic Server librpc.dll Multiple Buffer Overflow 3 (exploit.rules)
• 2800592 - ETPRO EXPLOIT Multiple Vendors librpc.dll Stack Buffer Overflow (exploit.rules)
• 2800593 - ETPRO EXPLOIT Multiple Vendors librpc.dll Stack Buffer Overflow (exploit.rules)
• 2800594 - ETPRO FTP Novell Netware FTP Server Remote Stack Buffer Overflow 1 (ftp.rules)
• 2800595 - ETPRO FTP Novell Netware FTP Server Remote Stack Buffer Overflow 2 (ftp.rules)
• 2800607 - ETPRO EXPLOIT Novell NetMail IMAP Command Parsing Buffer Overflow (exploit.rules)
• 2800608 - ETPRO EXPLOIT JPEG/TIFF Microsoft Windows Color Management Module Buffer Overflow (exploit.rules)
• 2800612 - ETPRO EXPLOIT Ipswitch WS_FTP Server FTP Commands Buffer Overflow (exploit.rules)
• 2800613 - ETPRO EXPLOIT Ipswitch WS_FTP Server FTP Commands Buffer Overflow (XMD5) (exploit.rules)
• 2800614 - ETPRO EXPLOIT Ipswitch WS_FTP Server FTP Commands Buffer Overflow(XSHA1) (exploit.rules)
• 2800615 - ETPRO EXPLOIT MailEnable IMAP Service Name Buffer Overflow (exploit.rules)
• 2800617 - ETPRO EXPLOIT MailEnable IMAP Service Name (CREATE) Buffer Overflow Attempt (exploit.rules)
• 2800624 - ETPRO ACTIVEX Microsoft Internet Explorer COM Object Instantiation Memory Corruption (activex.rules)
• 2800625 - ETPRO ACTIVEX Microsoft Internet Explorer COM Object Instantiation Memory Corruption Imjpcksid.dll (activex.rules)
• 2800626 - ETPRO ACTIVEX Microsoft Internet Explorer COM Object Instantiation Memory Corruption Imjpskdic.dll (activex.rules)
• 2800627 - ETPRO EXPLOIT 3Com TFTP Server Long Transporting Mode Remote Buffer Overflow Attempt (exploit.rules)
• 2800628 - ETPRO EXPLOIT 3Com TFTP Server Transporting Mode Remote Buffer Overflow Metasploit Exploit Detected against XPSP2 (exploit.rules)
• 2800629 - ETPRO EXPLOIT 3Com TFTP Server Transporting Mode Remote Buffer Overflow Generic Exploit Detected (exploit.rules)
• 2800630 - ETPRO EXPLOIT WEB_SERVER McAfee Multiple Products HTTP Server Header Processing Buffer Overflow (exploit.rules)
• 2800646 - ETPRO EXPLOIT Microsoft Word TextBox Sub-document Memory Corruption CVE-2007-1910 (exploit.rules)
• 2800660 - ETPRO EXPLOIT Novell eDirectory LDAP NULL Search Parameter Buffer Overflow 1 (exploit.rules)
• 2800661 - ETPRO EXPLOIT Novell eDirectory LDAP NULL Search Parameter Buffer Overflow 2 (exploit.rules)
• 2800662 - ETPRO EXPLOIT Novell eDirectory LDAP NULL Search Parameter Buffer Overflow 3 (exploit.rules)
• 2800665 - ETPRO EXPLOIT CA BrightStor ARCserve Backup caloggerd Opcode 79 Stack Buffer Overflow (exploit.rules)
• 2800666 - ETPRO EXPLOIT Borland Software InterBase ibserver.exe Service Attach Request Buffer Overflow (exploit.rules)
• 2800667 - ETPRO EXPLOIT Borland InterBase Database Message Handling Buffer Overflow (exploit.rules)
• 2800668 - ETPRO NETBIOS Samba receive_smb_raw SMB Packets Parsing Buffer Overflow (netbios.rules)
• 2800683 - ETPRO EXPLOIT Symantec VERITAS NetBackup Volume Manager Buffer Overflow (exploit.rules)
• 2800684 - ETPRO EXPLOIT Symantec VERITAS NetBackup Volume Manager Buffer Overflow (exploit.rules)
• 2800689 - ETPRO EXPLOIT Microsoft XML Core Services MIME Viewer Deference / Memory Corruption Race Condition (exploit.rules)
• 2800692 - ETPRO EXPLOIT Trend Micro ServerProtect RPC ENG_SetRealTimeScanConfigInfo Buffer Overflow (exploit.rules)
• 2800693 - ETPRO EXPLOIT Trend Micro ServerProtect RPC ENG_SetRealTimeScanConfigInfo Buffer Overflow (exploit.rules)
• 2800697 - ETPRO EXPLOIT Microsoft Word mso.dll LsCreateLine Memory Corruption (Published Exploit) (exploit.rules)
• 2800700 - ETPRO EXPLOIT avast! Antivirus ACE File Handling Buffer Overflow (exploit.rules)
• 2800701 - ETPRO EXPLOIT Nullsoft Winamp Midi File Header Handling Buffer Overflow (exploit.rules)
• 2800702 - ETPRO EXPLOIT Nullsoft Winamp Midi File Header Handling Buffer Overflow (Published Exploit) (exploit.rules)
• 2800705 - ETPRO EXPLOIT Microsoft Outlook iCal Meeting Request Malformed VEVENT Record Dereference Memory Corruption (exploit.rules)
• 2800706 - ETPRO EXPLOIT Microsoft Windows Media Player ASX Playlist Parsing Buffer Overflow (exploit.rules)
• 2800708 - ETPRO EXPLOIT Alt-N MDaemon IMAP Server CREATE Command Buffer Overflow (exploit.rules)
• 2800709 - ETPRO WEB_CLIENT Apple QuickTime RTSP URL Buffer Overflow (web_client.rules)
• 2800710 - ETPRO WEB_CLIENT Apple QuickTime RTSP URL Buffer Overflow (web_client.rules)
• 2800711 - ETPRO WEB_CLIENT Apple QuickTime RTSP URL Buffer Overflow (web_client.rules)
• 2800715 - ETPRO EXPLOIT Tivoli Storage Manager Initial Sign-on Request Buffer Overflow (exploit.rules)
• 2800716 - ETPRO EXPLOIT IBM Tivoli Directory Server LDAP Buffer Overflow (exploit.rules)
• 2800717 - ETPRO EXPLOIT HP Mercury Multiple Products Agent Command Processing Buffer Overflow (exploit.rules)
• 2800719 - ETPRO EXPLOIT Apache HTTP Server mod_rewrite Module LDAP Scheme Handling Buffer Overflow (exploit.rules)
• 2800730 - ETPRO EXPLOIT Trend Micro ServerProtect Crafted RPC Call CMON_NetTestConnection Buffer Overflow (exploit.rules)
• 2800731 - ETPRO EXPLOIT Trend Micro ServerProtect Crafted RPC Call CMON_NetTestConnection Buffer Overflow (exploit.rules)
• 2800742 - ETPRO EXPLOIT Symantec pcAnywhere Buffer Overflow (exploit.rules)
• 2800743 - ETPRO ACTIVEX Microsoft Internet Explorer daxctle.ocx KeyFrame Method Memory Corruption (activex.rules)
• 2800745 - ETPRO ACTIVEX Citrix Presentation Server Client ActiveX Control Buffer Overflow (activex.rules)
• 2800746 - ETPRO ACTIVEX Citrix Presentation Server Client ActiveX Control (via Citrix.ICAClient) Buffer Overflow (activex.rules)
• 2800751 - ETPRO EXPLOIT CA BrightStor ARCserve Backup Message Engine Opcode 117 Buffer Overflow (exploit.rules)
• 2800752 - ETPRO EXPLOIT CA BrightStor ARCserve Backup Message Engine Opcode 117 Buffer Overflow (exploit.rules)
• 2800753 - ETPRO EXPLOIT CA BrightStor ARCserve Backup Message Engine Opcode 117 Buffer Overflow (exploit.rules)
• 2800754 - ETPRO EXPLOIT CA BrightStor ARCserve Backup Message Engine Opcode 117 Buffer Overflow (exploit.rules)
• 2800756 - ETPRO ACTIVEX Microsoft Internet Explorer COM Object Instantiation Memory Corruption - 1 (activex.rules)
• 2800757 - ETPRO ACTIVEX Microsoft Internet Explorer COM Object Instantiation Memory Corruption - 2 (activex.rules)
• 2800758 - ETPRO ACTIVEX Microsoft Internet Explorer COM Object Instantiation Memory Corruption - 3 (activex.rules)
• 2800759 - ETPRO ACTIVEX Microsoft Internet Explorer COM Object Instantiation Memory Corruption - 4 (activex.rules)
• 2800760 - ETPRO ACTIVEX Microsoft Internet Explorer COM Object Instantiation Memory Corruption - 5 (activex.rules)
• 2800761 - ETPRO ACTIVEX Microsoft Internet Explorer COM Object Instantiation Memory Corruption - 6 (activex.rules)
• 2800762 - ETPRO ACTIVEX Microsoft Internet Explorer COM Object Instantiation Memory Corruption - 7 (activex.rules)
• 2800763 - ETPRO ACTIVEX Microsoft Internet Explorer COM Object Instantiation Memory Corruption - 8 (activex.rules)
• 2800764 - ETPRO ACTIVEX Microsoft Internet Explorer COM Object Instantiation Memory Corruption - 9 (activex.rules)
• 2800765 - ETPRO ACTIVEX Microsoft Internet Explorer COM Object Instantiation Memory Corruption - 10 (activex.rules)
• 2800768 - ETPRO EXPLOIT Alt-N MDaemon IMAP Server Authentication Routines Buffer Overflow (LOGIN) (exploit.rules)
• 2800769 - ETPRO ACTIVEX Misc Microsoft Internet Explorer COM Object Instantiation Memory Corruption 13 (activex.rules)
• 2800770 - ETPRO ACTIVEX Microsoft Internet Explorer COM Object Instantiation Memory Corruption 14 (activex.rules)
• 2800771 - ETPRO ACTIVEX Microsoft Internet Explorer COM Object Instantiation Memory Corruption 15 (activex.rules)
• 2800772 - ETPRO ACTIVEX Microsoft Internet Explorer COM Object Instantiation Memory Corruption 16 (activex.rules)
• 2800773 - ETPRO ACTIVEX Microsoft Internet Explorer COM Object Instantiation Memory Corruption 17 (activex.rules)
• 2800775 - ETPRO EXPLOIT Mercury Mail Transport System Buffer Overflow (exploit.rules)
• 2800778 - ETPRO WEB_CLIENT Microsoft Internet Explorer JPEG Rendering Buffer Overflow (web_client.rules)
• 2800780 - ETPRO ACTIVEX Microsoft Design Tools msdds.dll Memory Corruption (activex.rules)
• 2800781 - ETPRO EXPLOIT Microsoft Windows Shell Buffer Overflow (exploit.rules)
• 2800782 - ETPRO EXPLOIT Microsoft Windows Shell Buffer Overflow (no Item ID list) (exploit.rules)
• 2800788 - ETPRO EXPLOIT CA Messaging Queuing Buffer Overflow (exploit.rules)
• 2800789 - ETPRO WEB_CLIENT VideoLAN VLC Media Player RealText File Buffer Overflow 2 (web_client.rules)
• 2800790 - ETPRO EXPLOIT Alt-N MDaemon IMAP Server Authentication Routines Buffer Overflow CRAM-MD5 (exploit.rules)
• 2800791 - ETPRO EXPLOIT Atrium Mercur IMAP Remote Buffer Overflow (exploit.rules)
• 2800792 - ETPRO EXPLOIT MailEnable IMAP STATUS Command Buffer Overflow (exploit.rules)
• 2800793 - ETPRO EXPLOIT CA BrightStor ARCserve Backup XDR Parsing Buffer Overflow Attempt (exploit.rules)
• 2800833 - ETPRO SMTP IBM Lotus Domino nrouter.exe iCalendar MAILTO Stack Buffer Overflow (smtp.rules)
• 2800835 - ETPRO EXPLOIT CA Products UDP Discovery Service Remote Buffer Overflow 1 (exploit.rules)
• 2800836 - ETPRO EXPLOIT CA Products UDP Discovery Service Remote Buffer Overflow 2 (exploit.rules)
• 2800838 - ETPRO WEB_CLIENT Adobe Shockwave Director tSAC Chunk Parsing Memory Corruption (web_client.rules)
• 2800839 - ETPRO EXPLOIT HP Data Protector Express DtbClsLogin Stack Buffer Overflow (exploit.rules)
• 2800841 - ETPRO WEB_CLIENT Adobe Shockwave Director pamm Chunk Memory Corruption (web_client.rules)
• 2800854 - ETPRO EXPLOIT Oracle Java Runtime CMM readMabCurveData Buffer Overflow ICC DL (exploit.rules)
• 2800855 - ETPRO EXPLOIT Oracle Java Runtime CMM readMabCurveData Buffer Overflow ICM DL (exploit.rules)
• 2800856 - ETPRO EXPLOIT Oracle Java Runtime CMM readMabCurveData Buffer Overflow (exploit.rules)
• 2800862 - ETPRO EXPLOIT IBM Informix Dynamic Server DBINFO Stack Buffer Overflow (exploit.rules)
• 2800865 - ETPRO SQL IBM Informix Dynamic Server SQLEXEC oninit.exe EXPLAIN Stack Buffer Overflow (sql.rules)
• 2800866 - ETPRO SQL IBM Informix Dynamic Server oninit.exe EXPLAIN Stack Buffer Overflow (sql.rules)
• 2800879 - ETPRO EXPLOIT Adobe Shockwave Player Lnam Chunk Processing Buffer Overflow Big Endian Header (exploit.rules)
• 2800880 - ETPRO EXPLOIT Adobe Shockwave Player Lnam Chunk Processing Buffer Overflow Big Endian (exploit.rules)
• 2800881 - ETPRO EXPLOIT Adobe Shockwave Player Lnam Chunk Processing Buffer Overflow Little Endian Header (exploit.rules)
• 2800882 - ETPRO EXPLOIT Adobe Shockwave Player Lnam Chunk offset 24 Processing Buffer Overflow Little Endian (exploit.rules)
• 2800885 - ETPRO POP3 OK response buffer overflow (pop3.rules)
• 2800889 - ETPRO SMTP Novell GroupWise Internet Agent Content-Type Buffer Overflow (smtp.rules)
• 2800892 - ETPRO NETBIOS Novell Client nwspool.dll EnumPrinters Function Stack Buffer Overflow UUID set (netbios.rules)
• 2800893 - ETPRO NETBIOS Novell Client nwspool.dll EnumPrinters Function Stack Buffer Overflow (netbios.rules)
• 2800894 - ETPRO NETBIOS Novell Client nwspool.dll EnumPrinters Function Stack Buffer Overflow (netbios.rules)
• 2800895 - ETPRO NETBIOS Novell Client nwspool.dll EnumPrinters Function Stack Buffer Overflow (netbios.rules)
• 2800896 - ETPRO NETBIOS Novell Client nwspool.dll EnumPrinters Function Stack Buffer Overflow (netbios.rules)
• 2800897 - ETPRO NETBIOS Novell Client nwspool.dll EnumPrinters Function Stack Buffer Overflow (netbios.rules)
• 2800898 - ETPRO EXPLOIT CA Multiple Products Alert Notification Server Buffer Overflow (exploit.rules)
• 2800899 - ETPRO EXPLOIT CA Multiple Products Alert Notification Server Buffer Overflow (exploit.rules)
• 2800900 - ETPRO EXPLOIT CA Multiple Products Alert Notification Server Buffer Overflow (exploit.rules)
• 2800901 - ETPRO EXPLOIT CA Multiple Products Alert Notification Server Buffer Overflow (exploit.rules)
• 2800902 - ETPRO EXPLOIT CA Multiple Products Alert Notification Server Buffer Overflow (exploit.rules)
• 2800903 - ETPRO EXPLOIT CA Multiple Products Alert Notification Server Buffer Overflow set (exploit.rules)
• 2800904 - ETPRO EXPLOIT CA Multiple Products Alert Notification Server Buffer Overflow 1 (exploit.rules)
• 2800905 - ETPRO EXPLOIT CA Multiple Products Alert Notification Server Buffer Overflow 2 (exploit.rules)
• 2800906 - ETPRO EXPLOIT CA Multiple Products Alert Notification Server Buffer Overflow 3 (exploit.rules)
• 2800907 - ETPRO EXPLOIT CA Multiple Products Alert Notification Server Buffer Overflow 4 (exploit.rules)
• 2800908 - ETPRO EXPLOIT CA Products UDP Discovery Service Remote Buffer Overflow 2 (exploit.rules)
• 2800909 - ETPRO WEB_CLIENT Adobe Reader printSeps Memory Corruption (web_client.rules)
• 2800928 - ETPRO IMAP Possible Novell GroupWise Internet Agent RRULE Parsing Buffer Overflow Attempt (imap.rules)
• 2800929 - ETPRO SMTP Novell GroupWise Internet Agent Content-Type Buffer Overflow (smtp.rules)
• 2800930 - ETPRO EXPLOIT IBM Informix Dynamic Server DBINFO Stack Buffer Overflow (exploit.rules)
• 2800931 - ETPRO EXPLOIT IBM Informix Dynamic Server DBINFO Stack Buffer Overflow (exploit.rules)
• 2800933 - ETPRO SMTP Novell GroupWise Internet Agent RRULE Parsing Buffer Overflow smtp (smtp.rules)
• 2800936 - ETPRO FTP ProFTPD FTP Server TELNET_IAC Stack Buffer Overflow (ftp.rules)
• 2800940 - ETPRO ACTIVEX Novell iPrint Client GetDriverSettings Stack Buffer Overflow (activex.rules)
• 2800941 - ETPRO ACTIVEX Novell iPrint Client GetDriverSettings Stack Buffer Overflow 2 (activex.rules)
• 2800947 - ETPRO EXPLOIT Novell ZENworks Handheld Management ZfHIPCND.exe Buffer Overflow (exploit.rules)
• 2800956 - ETPRO EXPLOIT HP Data Protector Manager MMD Service Stack Buffer Overflow (exploit.rules)
• 2801178 - ETPRO EXPLOIT Microsoft IIS FTP Server Telnet IAC Buffer Overflow (exploit.rules)
• 2801179 - ETPRO ACTIVEX Microsoft Internet Explorer HTML Object Memory Corruption (activex.rules)
• 2801183 - ETPRO EXPLOIT Apple CUPS IPP Use-after-free Memory Corruption byte 0x37 (exploit.rules)
• 2801184 - ETPRO EXPLOIT Apple CUPS IPP Use-after-free Memory Corruption byte 0x38 (exploit.rules)
• 2801185 - ETPRO EXPLOIT Apple CUPS IPP Use-after-free Memory Corruption byte 0x39 (exploit.rules)
• 2801186 - ETPRO EXPLOIT Apple CUPS IPP Use-after-free Memory Corruption byte 0x3A (exploit.rules)
• 2801187 - ETPRO EXPLOIT Apple CUPS IPP Use-after-free Memory Corruption byte 0x3B (exploit.rules)
• 2801188 - ETPRO EXPLOIT Apple CUPS IPP Use-after-free Memory Corruption byte 0x3C (exploit.rules)
• 2801189 - ETPRO EXPLOIT Apple CUPS IPP Use-after-free Memory Corruption byte 0x3D (exploit.rules)
• 2801190 - ETPRO EXPLOIT Apple CUPS IPP Use-after-free Memory Corruption byte 0x3E (exploit.rules)
• 2801191 - ETPRO EXPLOIT Apple CUPS IPP Use-after-free Memory Corruption byte 0x3F (exploit.rules)
• 2801192 - ETPRO EXPLOIT Apple CUPS IPP Use-after-free Memory Corruption byte 0x40 (exploit.rules)
• 2801193 - ETPRO EXPLOIT Apple CUPS IPP Use-after-free Memory Corruption byte 0x43 (exploit.rules)
• 2801194 - ETPRO EXPLOIT Apple CUPS IPP Use-after-free Memory Corruption byte 0x35 (exploit.rules)
• 2801195 - ETPRO EXPLOIT Apple CUPS IPP Use-after-free Memory Corruption byte 0x36 (exploit.rules)
• 2801196 - ETPRO EXPLOIT Apple CUPS IPP Use-after-free Memory Corruption byte 0x41 (exploit.rules)
• 2801197 - ETPRO EXPLOIT Apple CUPS IPP Use-after-free Memory Corruption byte 0x42 (exploit.rules)
• 2801198 - ETPRO EXPLOIT Apple CUPS IPP Use-after-free Memory Corruption byte 0x44 (exploit.rules)
• 2801199 - ETPRO EXPLOIT Apple CUPS IPP Use-after-free Memory Corruption byte 0x45 (exploit.rules)
• 2801200 - ETPRO EXPLOIT Apple CUPS IPP Use-after-free Memory Corruption byte 0x46 (exploit.rules)
• 2801201 - ETPRO EXPLOIT Apple CUPS IPP Use-after-free Memory Corruption byte 0x47 (exploit.rules)
• 2801202 - ETPRO EXPLOIT Apple CUPS IPP Use-after-free Memory Corruption byte 0x48 (exploit.rules)
• 2801203 - ETPRO EXPLOIT Apple CUPS IPP Use-after-free Memory Corruption byte 0x49 (exploit.rules)
• 2801230 - ETPRO WEB_CLIENT Microsoft Graphics Rendering Engine Thumbnail Image Stack Buffer Overflow Public Exploit (CVE-2010-3970) (web_client.rules)
• 2801240 - ETPRO WEB_CLIENT Internet Explorer Memory Corruption in Microsoft Data Access Object (CVE-2011-0027) (web_client.rules)
• 2801272 - ETPRO EXPLOIT CA BrightStor ARCserve Backup Media Server SUN RPC Service Buffer Overflow (exploit.rules)
• 2801276 - ETPRO EXPLOIT HP OpenView Network Node Manager nnmRptConfig.exe nameParams text1 Buffer Overflow (exploit.rules)
• 2801278 - ETPRO EXPLOIT HP OpenView Network Node Manager nnmRptConfig.exe nameParams text1 Buffer Overflow (exploit.rules)
• 2801281 - ETPRO EXPLOIT NetSupport Manager Client Buffer Overflow Relative (exploit.rules)
• 2801307 - ETPRO EXPLOIT HP OpenView Network Node Manager jovgraph.exe displayWidth Buffer Overflow (exploit.rules)
• 2801310 - ETPRO EXPLOIT Oracle GoldenGate Veridata Server XML SOAP Request Buffer Overflow (exploit.rules)
• 2801328 - ETPRO EXPLOIT Symantec Alert Management System Pin Number Stack Buffer Overflow (exploit.rules)
• 2801334 - ETPRO WEB_CLIENT Adobe PDF Memory Corruption /Ff Dictionary Key Corruption (web_client.rules)
• 2801337 - ETPRO EXPLOIT Symantec Alert Management System Modem String Stack Buffer Overflow (exploit.rules)
• 2801353 - ETPRO EXPLOIT HP OpenView Network Node Manager ovutil.dll stringToSeconds Buffer Overflow (exploit.rules)
• 2801370 - ETPRO NETBIOS Microsoft Windows Active Directory BROWSER ELECTION Buffer Overflow Inbound Netbios 138 2 (netbios.rules)
• 2801371 - ETPRO NETBIOS Microsoft Windows Active Directory BROWSER ELECTION Buffer Overflow Inbound Netbios 139 (netbios.rules)
• 2801372 - ETPRO NETBIOS Microsoft Windows Active Directory BROWSER ELECTION Buffer Overflow SMB (netbios.rules)
• 2801373 - ETPRO NETBIOS Microsoft Windows Active Directory BROWSER ELECTION Buffer Overflow CIFS (CVE-2011-0654) (netbios.rules)
• 2801374 - ETPRO NETBIOS Microsoft Windows Active Directory BROWSER ELECTION Buffer Overflow Internal Netbios 138 1 (netbios.rules)
• 2801375 - ETPRO NETBIOS Microsoft Windows Active Directory BROWSER ELECTION Buffer Overflow Internal Netbios 138 2 (netbios.rules)
• 2801376 - ETPRO NETBIOS Microsoft Windows Active Directory BROWSER ELECTION Buffer Overflow Internal Netbios 139 (netbios.rules)
• 2801377 - ETPRO NETBIOS Microsoft Windows Active Directory BROWSER ELECTION Buffer Overflow Internal SMB (netbios.rules)
• 2801378 - ETPRO NETBIOS Microsoft Windows Active Directory BROWSER ELECTION Buffer Overflow Internal CIFS (CVE-2011-0654) (netbios.rules)
• 2801391 - ETPRO EXPLOIT IBM Informix Dynamic Server SET ENVIRONMENT Stack Buffer Overflow (exploit.rules)
• 2801392 - ETPRO EXPLOIT IBM Informix Dynamic Server SET ENVIRONMENT Stack Buffer Overflow (exploit.rules)
• 2801443 - ETPRO EXPLOIT Novell Netware XNFS.NLM Stack Buffer Overflow 1 (exploit.rules)
• 2801444 - ETPRO EXPLOIT Novell Netware XNFS.NLM Stack Buffer Overflow 2 (exploit.rules)
• 2801622 - ETPRO EXPLOIT Citrix Provisioning Services streamprocess.exe Stack Buffer Overflow (exploit.rules)
• 2801725 - ETPRO SCADA RealWin INFOTAG/SET_CONTROL Packet Processing Buffer Overflow (scada.rules)
• 2801727 - ETPRO SCADA Wonderware InBatch Buffer Overflow Attempt (scada.rules)
• 2801730 - ETPRO SCADA RealWin HMI Service Buffer Overflow Attempt 1 (scada.rules)
• 2801731 - ETPRO SCADA RealWin HMI Service Buffer Overflow Attempt 2 (scada.rules)
• 2801732 - ETPRO SCADA RealWin HMI Service Buffer Overflow Attempt 3 (scada.rules)
• 2801733 - ETPRO SCADA NetBiter Config HICP Hostname Buffer Overflow (scada.rules)
• 2801760 - ETPRO EXPLOIT Novell Netware FTP Server DELE Command Stack Buffer Overflow (exploit.rules)
• 2801904 - ETPRO EXPLOIT Novell iManager ClassName Remote Buffer Overflow (exploit.rules)
• 2801931 - ETPRO WEB_CLIENT Microsoft Office Excel Pivot Item Index Boundary Error Memory Corruption 3 (web_client.rules)
• 2801970 - ETPRO EXPLOIT HP OpenView Network Node Manager ovwebsnmpsrv.exe OVwSelection Buffer Overflow (exploit.rules)
• 2802036 - ETPRO WEB_CLIENT Microsoft CSS swapnode Memory Corruption Vulnerability (web_client.rules)
• 2802140 - ETPRO WEB_CLIENT Microsoft Internet Explorer HtmlDlgHelper Memory Corruption via doc (CVE-2010-3329) (web_client.rules)
• 2802141 - ETPRO WEB_CLIENT Microsoft Internet Explorer HtmlDlgHelper Memory Corruption via docx (CVE-2010-3329) (web_client.rules)
• 2802142 - ETPRO WEB_CLIENT Microsoft Internet Explorer HtmlDlgHelper Memory Corruption via xls (CVE-2010-3329) (web_client.rules)
• 2802143 - ETPRO WEB_CLIENT Microsoft Internet Explorer HtmlDlgHelper Memory Corruption via xlsx (CVE-2010-3329) (web_client.rules)
• 2802144 - ETPRO WEB_CLIENT Microsoft Internet Explorer HtmlDlgHelper Memory Corruption via rtf (CVE-2010-3329) (web_client.rules)
• 2802145 - ETPRO WEB_CLIENT Microsoft Internet Explorer HtmlDlgHelper Memory Corruption via xlt (CVE-2010-3329) (web_client.rules)
• 2802150 - ETPRO EXPLOIT HP Data Protector Backup Client Service GET_FILE Buffer Overflow (UTF-16 Little-Endian ) (exploit.rules)
• 2802151 - ETPRO EXPLOIT HP Data Protector Backup Client Service GET_FILE Buffer Overflow (UTF-16 Big-Endian) (exploit.rules)
• 2802164 - ETPRO EXPLOIT Embarcadero InterBase Connect Request Multiple Stack Buffer Overflows 1 (exploit.rules)
• 2802165 - ETPRO EXPLOIT Embarcadero InterBase Connect Request Multiple Stack Buffer Overflows 2 (exploit.rules)
• 2802166 - ETPRO EXPLOIT Embarcadero InterBase Connect Request Multiple Stack Buffer Overflows 3 (exploit.rules)
• 2802167 - ETPRO EXPLOIT Embarcadero InterBase Connect Request Multiple Stack Buffer Overflows 4 (exploit.rules)
• 2802168 - ETPRO EXPLOIT Embarcadero InterBase Connect Request Multiple Stack Buffer Overflows 5 (exploit.rules)
• 2802210 - ETPRO EXPLOIT Sybase M-Business Anywhere agSoap.exe Closing Tag Buffer Overflow (exploit.rules)
• 2802834 - ETPRO SMTP Postfix SASL AUTH Handle Reuse Memory Corruption(Published Exploit) 1 (smtp.rules)
• 2802835 - ETPRO SMTP Postfix SASL AUTH Handle Reuse Memory Corruption(Published Exploit) 2 (smtp.rules)
• 2802836 - ETPRO SMTP Postfix SASL AUTH Handle Reuse Memory Corruption(Published Exploit) 3 (smtp.rules)
• 2802837 - ETPRO SCADA 7T Interactive Graphical SCADA System File Operations Buffer Overflow 1 (CVE-2011-1567) (scada.rules)
• 2802838 - ETPRO SCADA 7T Interactive Graphical SCADA System File Operations Buffer Overflows 2 (CVE-2011-1567) (scada.rules)
• 2802889 - ETPRO WEB_SPECIFIC_APPS HP OpenView NNM nnmRptconfig.exe schdParams and nameParams Buffer Overflow (web_specific_apps.rules)
• 2802892 - ETPRO EXPLOIT HP Intelligent Management Center img Buffer Overflow (exploit.rules)
• 2802930 - ETPRO EXPLOIT HP Intelligent Management Center dbman Buffer Overflow (exploit.rules)
• 2802968 - ETPRO ACTIVEX Tom Sawyer GET Extension Factory COM Object Instantiation Memory Corruption 1 (activex.rules)
• 2802969 - ETPRO ACTIVEX Tom Sawyer GET Extension Factory COM Object Instantiation Memory Corruption 2 (activex.rules)
• 2802970 - ETPRO ACTIVEX Tom Sawyer GET Extension Factory COM Object Instantiation Memory Corruption 3 (activex.rules)
• 2802979 - ETPRO EXPLOIT HP OpenView NNM nnmRptconfig.exe schdParams and nameParams Buffer Overflow (exploit.rules)
• 2802989 - ETPRO WEB_CLIENT MSIE Layout Memory Corruption Attack (web_client.rules)
• 2803082 - ETPRO EXPLOIT IBM Lotus Notes LZH Attachment Viewer Stack Buffer Overflow(Published Exploit) (exploit.rules)
• 2803104 - ETPRO EXPLOIT Long If-Modified-Since Field likely iMatix Xitami or other Remote Buffer Overflow (exploit.rules)
• 2803107 - ETPRO EXPLOIT HP OpenView Storage Data Protector EXEC_CMD Buffer Overflow (exploit.rules)
• 2803112 - ETPRO EXPLOIT Citrix Provisioning Services Opcode 40020010 Stack Buffer Overflow (exploit.rules)
• 2803123 - ETPRO EXPLOIT IBM Lotus Domino HPRAgentName Parameter Stack Buffer Overflow (exploit.rules)
• 2803384 - ETPRO EXPLOIT Sybase Open Server Null Byte Stack Memory Corruption - SET (exploit.rules)
• 2803385 - ETPRO EXPLOIT Sybase Open Server Null Byte Stack Memory Corruption (exploit.rules)
• 2803405 - ETPRO WEB_CLIENT Microsoft Internet Explorer XSLT Memory Corruption - SET (web_client.rules)
• 2803468 - ETPRO EXPLOIT Symantec Veritas Enterprise Administrator Service vxsvc Buffer Overflow 1 (exploit.rules)
• 2803469 - ETPRO EXPLOIT Symantec Veritas Enterprise Administrator Service vxsvc Buffer Overflow 2 (exploit.rules)
• 2803470 - ETPRO EXPLOIT Symantec Veritas Enterprise Administrator Service vxsvc Buffer Overflow 3 (exploit.rules)
• 2803471 - ETPRO EXPLOIT Symantec Veritas Enterprise Administrator Service vxsvc Buffer Overflow 4 (exploit.rules)
• 2803472 - ETPRO EXPLOIT Symantec Veritas Enterprise Administrator Service vxsvc Buffer Overflow 5 (exploit.rules)
• 2803473 - ETPRO EXPLOIT Symantec Veritas Enterprise Administrator Service vxsvc Buffer Overflow 6 (exploit.rules)
• 2803474 - ETPRO EXPLOIT Symantec Veritas Enterprise Administrator Service vxsvc Buffer Overflow 7 (exploit.rules)
• 2803475 - ETPRO EXPLOIT Symantec Veritas Enterprise Administrator Service vxsvc Buffer Overflow 8 (exploit.rules)
• 2803476 - ETPRO EXPLOIT Symantec Veritas Enterprise Administrator Service vxsvc Buffer Overflow 9 (exploit.rules)
• 2803477 - ETPRO EXPLOIT Symantec Veritas Enterprise Administrator Service vxsvc Buffer Overflow 10 (exploit.rules)
• 2803605 - ETPRO EXPLOIT Squid Proxy Gopher Response Processing Buffer Overflow (exploit.rules)
• 2803647 - ETPRO EXPLOIT Citrix XenApp and XenDesktop XML Service Interface Stack Buffer Overflow (exploit.rules)
• 2803716 - ETPRO EXPLOIT EMC AutoStart Error Logging Stack Buffer Overflow (exploit.rules)
• 2803958 - ETPRO EXPLOIT HP Power Manager formExportDataLogs Buffer Overflow (exploit.rules)
• 2804397 - ETPRO EXPLOIT Avaya WinPDM UniteHostRouter Stack Buffer Overflow (exploit.rules)
• 2804399 - ETPRO EXPLOIT HP OpenView Network Node Manager ov.dll _OVBuildPath Buffer Overflow (exploit.rules)
• 2804463 - ETPRO EXPLOIT libtelnet/encrypt.c in telnetd in FreeBSD 7.3 through 9.0 and Cisco IronPort Appliances Buffer overflow (exploit.rules)
• 2804567 - ETPRO EXPLOIT Citrix Provisioning Services 5.6 SP1 Streamprocess Opcode 0x40020000 Buffer Overflow (exploit.rules)
• 2804579 - ETPRO EXPLOIT TrendMicro Control Manger <= v5.5 CmdProcessor.exe Stack Buffer Overflow (exploit.rules)
• 2805056 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free via getBoundingClientRect() (web_client.rules)
• 2805099 - ETPRO WEB_CLIENT Apple iTunes 10.6.1.7 M3U Playlist File Walking Heap Buffer Overflow (web_client.rules)
• 2805314 - ETPRO WEB_CLIENT Microsoft Internet Explorer 7 Layout Memory Use-After-Free Exploit Attempt (web_client.rules)
• 2805478 - ETPRO WEB_CLIENT Internet Explorer Use-after-free attempt (web_client.rules)
• 2805479 - ETPRO WEB_CLIENT Internet Explorer Use-after-free attempt (web_client.rules)
• 2805480 - ETPRO WEB_CLIENT Internet Explorer 9 memory corruption (web_client.rules)
• 2805679 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free (CVE-2012-1538) (web_client.rules)
• 2806005 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free (web_client.rules)
• 2806007 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free (web_client.rules)
• 2806008 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free (web_client.rules)
• 2806356 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free (web_client.rules)
• 2806357 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free (web_client.rules)
• 2806481 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free (web_client.rules)
• 2806487 - ETPRO WEB_CLIENT Internet Explorer Use-After-Free CVE-2013-3120 (web_client.rules)
• 2806491 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free (web_client.rules)
• 2806499 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free (web_client.rules)
• 2806625 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free 1 (CVE-2013-3115) (web_client.rules)
• 2806626 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free 2 (CVE-2013-3115) (web_client.rules)
• 2806627 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free 3 CVE-2013-3115 (web_client.rules)
• 2806628 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free 4 CVE-2013-3115 (web_client.rules)
• 2806629 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free 5 (CVE-2013-3115) (web_client.rules)
• 2806630 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free 6 (CVE-2013-3115) (web_client.rules)
• 2806631 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free 1 (CVE-2013-3143) (web_client.rules)
• 2806632 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free 2 (CVE-2013-3143) (web_client.rules)
• 2806633 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free (CVE-2013-1346) (web_client.rules)
• 2806634 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free 1 (CVE-2013-1347) (web_client.rules)
• 2806635 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free 2 (CVE-2013-1347) (web_client.rules)
• 2806636 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free 1 (CVE-2013-1348) (web_client.rules)
• 2806637 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free 2 (CVE-2013-1348) (web_client.rules)
• 2806638 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free 1 (CVE-2013-3150) (web_client.rules)
• 2806639 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free 2 (CVE-2013-3150) (web_client.rules)
• 2806640 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free 1 (CVE-2013-3152) (web_client.rules)
• 2806641 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free 2 (CVE-2013-3152) (web_client.rules)
• 2806642 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free 3 (CVE-2013-3152) (web_client.rules)
• 2806643 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free 4 (CVE-2013-3152) (web_client.rules)
• 2806644 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free (CVE-2013-3153) (web_client.rules)
• 2806817 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free (CVE-2013-3184) (web_client.rules)
• 2806818 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free (CVE-2013-3187) (web_client.rules)
• 2806821 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free CVE-2013-3194 (web_client.rules)
• 2806825 - ETPRO WEB_CLIENT Potential Microsoft Internet Explorer Use-After-Free (CVE-2013-3193) (web_client.rules)
• 2806973 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free (CVE-2013-3202) (web_client.rules)
• 2806976 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free CVE-2013-3205 (web_client.rules)
• 2806977 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free CVE-2013-3206 (web_client.rules)
• 2806978 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free CVE-2013-3207 (web_client.rules)
• 2806979 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free CVE-2013-3208 (web_client.rules)
• 2806980 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free (CVE-2013-3209) (web_client.rules)
• 2806981 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free CVE-2013-3845 (web_client.rules)
• 2807098 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free CVE-2013-3871 1 (web_client.rules)
• 2807099 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free CVE-2013-3871 2 (web_client.rules)
• 2807100 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free (CVE-2013-3873) (web_client.rules)
• 2807101 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free (CVE-2013-3874) (web_client.rules)
• 2807102 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free (CVE-2013-3875) (web_client.rules)
• 2807103 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free CVE-2013-3885 (web_client.rules)
• 2807157 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free CVE-2013-3845 2 (web_client.rules)
• 2807201 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free (CVE-2013-3871) 1 (web_client.rules)
• 2807202 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free (CVE-2013-3871) 2 (web_client.rules)
• 2807203 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free (CVE-2013-3871) 3 (web_client.rules)
• 2807204 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free (CVE-2013-3871) 4 (web_client.rules)
• 2807205 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free (CVE-2013-3910) (web_client.rules)
• 2807206 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free (CVE-2013-3911) 1 (web_client.rules)
• 2807207 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free (CVE-2013-3911) 2 (web_client.rules)
• 2807208 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free (CVE-2013-3912) (web_client.rules)
• 2807209 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free (CVE-2013-3914) (web_client.rules)
• 2807210 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free (CVE-2013-3915) (web_client.rules)
• 2807211 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free (CVE-2013-3916) (web_client.rules)
• 2807212 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free (CVE-2013-3917) (web_client.rules)
• 2807231 - ETPRO WEB_CLIENT Adobe Acrobat Reader Font Memory Corruption Vulnerability (CVE-2013-3353) (web_client.rules)
• 2807299 - ETPRO WEB_CLIENT Internet Explorer CViewportChangeInvalidation User-After-Free (CVE-2013-5051) (web_client.rules)
• 2807300 - ETPRO WEB_CLIENT IE OnControlSelect Memory Corruption (CVE-2013-5052) 1 (web_client.rules)
• 2807301 - ETPRO WEB_CLIENT IE OnControlSelect Memory Corruption CVE-2013-5052 2 (web_client.rules)
• 2807302 - ETPRO WEB_CLIENT IE Scripting Dictionary User-After-Free (CVE-2013-5056) (web_client.rules)
• 2808545 - ETPRO WEB_CLIENT Possible Internet Explorer Use-After-Free CVE-2014-4063 (web_client.rules)
• 2808998 - ETPRO WEB_CLIENT Possible Internet Explorer Memory Corruption Vulnerability CVE-2014-4137 (web_client.rules)
• 2809161 - ETPRO WEB_CLIENT Possible IE Memory Corruption Vulnerability CVE-2014-6351 (web_client.rules)
• 2809231 - ETPRO EXPLOIT Hikvision DVR Buffer Overflow Exploit Attempt CVE-2014-4879 (exploit.rules)
• 2809298 - ETPRO WEB_CLIENT IE CSetTimeoutInfo Use-After-Free CVE-2014-6327 (web_client.rules)
• 2809730 - ETPRO WEB_CLIENT Internet Explorer Use-After-Free CVE-2015-0041 1 (web_client.rules)
• 2809731 - ETPRO WEB_CLIENT Internet Explorer Use-After-Free CVE-2015-0041 2 (web_client.rules)
• 2809732 - ETPRO WEB_CLIENT Internet Explorer Use-After-Free CVE-2015-0041 3 (web_client.rules)
• 2809733 - ETPRO WEB_CLIENT Internet Explorer Use-After-Free CVE-2015-0041 4 (web_client.rules)
• 2809734 - ETPRO WEB_CLIENT Internet Explorer Use-After-Free CVE-2015-0041 5 (web_client.rules)
• 2811959 - ETPRO WEB_CLIENT JScript9 Memory Corruption Vulnerability (CVE-2015-2419) (web_client.rules)
• 2812909 - ETPRO WEB_CLIENT Internet Explorer Memory Corruption Vulnerability (CVE-2015-2486) (web_client.rules)
• 2814342 - ETPRO WEB_CLIENT Internet Explorer Memory Corruption Vulnerability (CVE-2015-2482) (web_client.rules)
• 2814839 - ETPRO WEB_CLIENT Internet Explorer Memory Corruption Vulnerability (CVE-2015-6087) (web_client.rules)
• 2820622 - ETPRO WEB_CLIENT Microsoft Visual Studio Mdmask32.ocx ActiveX Buffer Overflow (CVE-2008-3704) (web_client.rules)
• 2820623 - ETPRO EXPLOIT IBM Lotus Domino Sametime STMux.exe Stack Buffer Overflow (CVE-2008-2499) (exploit.rules)
• 2820624 - ETPRO EXPLOIT HP OpenView Network Node Manager HTTP handling buffer overflow (CVE-2008-1697) (exploit.rules)
• 2820625 - ETPRO EXPLOIT SAP SAPLPD 6.28 Buffer Overflow (CVE-2008-0621) (exploit.rules)
• 2820626 - ETPRO WEB_SERVER HP OpenView Network Node Manager Toolbar.exe HTTP Request Buffer Overflow (web_server.rules)
• 2820627 - ETPRO WEB_CLIENT Microsoft DirectShow (msvidctl.dll) MPEG-2 Memory Corruption (CVE-2008-0015) (web_client.rules)
• 2820628 - ETPRO WEB_CLIENT Microsoft DirectShow (msvidctl.dll) MPEG-2 Memory Corruption (CVE-2008-0015) (web_client.rules)
• 2820629 - ETPRO WEB_CLIENT Microsoft DirectShow (msvidctl.dll) MPEG-2 Memory Corruption (CVE-2008-0015) (web_client.rules)
• 2820630 - ETPRO WEB_CLIENT Microsoft DirectShow (msvidctl.dll) MPEG-2 Memory Corruption (CVE-2008-0015) (web_client.rules)
• 2820631 - ETPRO WEB_CLIENT Microsoft DirectShow (msvidctl.dll) MPEG-2 Memory Corruption (CVE-2008-0015) (web_client.rules)
• 2820632 - ETPRO WEB_CLIENT Microsoft DirectShow (msvidctl.dll) MPEG-2 Memory Corruption (CVE-2008-0015) (web_client.rules)
• 2820633 - ETPRO WEB_CLIENT Microsoft DirectShow (msvidctl.dll) MPEG-2 Memory Corruption (CVE-2008-0015) (web_client.rules)
• 2820634 - ETPRO WEB_CLIENT Microsoft DirectShow (msvidctl.dll) MPEG-2 Memory Corruption (CVE-2008-0015) (web_client.rules)
• 2820635 - ETPRO WEB_CLIENT Microsoft DirectShow (msvidctl.dll) MPEG-2 Memory Corruption (CVE-2008-0015) (web_client.rules)
• 2820636 - ETPRO WEB_CLIENT Microsoft DirectShow (msvidctl.dll) MPEG-2 Memory Corruption (CVE-2008-0015) (web_client.rules)
• 2820638 - ETPRO EXPLOIT Asterisk Multiple Buffer Overflows Allows Remote Code Execution via Parameters in an SIP Message M1 (CVE-2007-2293) (exploit.rules)
• 2820639 - ETPRO EXPLOIT Asterisk Multiple Buffer Overflows Allows Remote Code Execution via Parameters in an SIP Message M2 (CVE-2007-2293) (exploit.rules)
• 2820640 - ETPRO EXPLOIT CA BrightStor ARCserve Backup mediasvr RPC Buffer Overflow Vuln M1 (CVE-2007-1785) (exploit.rules)
• 2820641 - ETPRO EXPLOIT IBM Lotus Domino IMAP Server (nimap.exe) CRAM-MD5 buffer overflow (CVE-2007-1675) (set) (exploit.rules)
• 2820642 - ETPRO EXPLOIT IBM Lotus Domino IMAP Server (nimap.exe) CRAM-MD5 buffer overflow (CVE-2007-1675) (set) (exploit.rules)
• 2820643 - ETPRO EXPLOIT IBM Lotus Domino IMAP Server (nimap.exe) CRAM-MD5 buffer overflow (CVE-2007-1675) (exploit.rules)
• 2820650 - ETPRO NETBIOS DCERPC Microsoft Windows Client Service for NetWare Memory Corruption (CVE-2006-4688) (netbios.rules)
• 2820656 - ETPRO EXPLOIT ASN.1 Buffer Overflow Attempt (exploit.rules)
• 2820657 - ETPRO EXPLOIT CA BrightStor Discovery Service Stack Buffer Overflow (exploit.rules)
• 2820660 - ETPRO EXPLOIT Possible SVN Date Parsing Buffer Overflow (exploit.rules)
• 2820661 - ETPRO EXPLOIT Possible SVN Date Parsing Buffer Overflow (exploit.rules)
• 2820663 - ETPRO EXPLOIT Possible IIS ISAPI IDQ Extension Buffer Overflow (exploit.rules)
• 2820664 - ETPRO EXPLOIT Possible IIS ISAPI IDA Extension Buffer Overflow (exploit.rules)
• 2821074 - ETPRO WEB_CLIENT Internet Explorer Memory Corruption Vulnerability (CVE-2016-3241) (web_client.rules)
• 2822532 - ETPRO WEB_CLIENT Possible Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2016-3385) (web_client.rules)
• 2822535 - ETPRO WEB_CLIENT Possible Microsoft Edge Memory Corruption Vulnerability M1 (CVE-2016-7190) (web_client.rules)
• 2822536 - ETPRO WEB_CLIENT Possible Microsoft Edge Memory Corruption Vulnerability M2 (CVE-2016-7190) (web_client.rules)
• 2822539 - ETPRO EXPLOIT Adobe Flash Player Memory Corruption (CVE-2016-4273) (exploit.rules)
• 2823145 - ETPRO WEB_CLIENT Possible Microsoft Edge Buffer Overflow M1 (CVE-2016-7202) (web_client.rules)
• 2823828 - ETPRO WEB_CLIENT Possible Microsoft Edge Buffer Overflow M2 (CVE-2016-7202) (web_client.rules)
• 2823829 - ETPRO WEB_CLIENT Possible Microsoft Edge Buffer Overflow M3 (CVE-2016-7202) (web_client.rules)
• 2823830 - ETPRO WEB_CLIENT Possible Microsoft Edge Buffer Overflow M4 (CVE-2016-7202) (web_client.rules)
• 2823837 - ETPRO WEB_CLIENT Microsoft Edge Memory Corruption Vulnerability (CVE-2016-7286) (web_client.rules)
• 2824321 - ETPRO WEB_CLIENT Possible Adobe Reader Memory Corruption Attempt (CVE-2017-2960) (web_client.rules)
• 2825376 - ETPRO WEB_CLIENT Possible Scripting Engine Memory Corruption Vulnerability (CVE-2017-0010) (web_client.rules)
• 2825383 - ETPRO EXPLOIT MS Word Buffer Overflow (CVE-2017-0030) (exploit.rules)
• 2825399 - ETPRO EXPLOIT Flash Player Memory Corruption (CVE-2017-2991) (exploit.rules)
• 2825401 - ETPRO WEB_CLIENT Microsoft Edge Scripting Engine Memory Corruption Vulnerability (CVE-2017-0015) (web_client.rules)
• 2825403 - ETPRO WEB_CLIENT Internet Explorer Scripting Engine Memory Corruption Vulnerability (CVE-2017-0018) (web_client.rules)
• 2825404 - ETPRO WEB_CLIENT Microsoft Edge Memory Corruption Vulnerability (CVE-2017-0034) (web_client.rules)
• 2825409 - ETPRO WEB_CLIENT Microsoft Edge Scripting Engine Memory Corruption Vulnerability (CVE-2017-0067) (web_client.rules)
• 2825413 - ETPRO WEB_CLIENT Scripting Engine Memory Corruption Vulnerability (CVE-2017-0071) (web_client.rules)
• 2825855 - ETPRO EXPLOIT Internet Explorer Memory Corruption Vulnerability (CVE-2017-0202) (exploit.rules)
• 2826737 - ETPRO EXPLOIT Adobe Flash Memory Corruption (CVE-2017-3082) (exploit.rules)
• 2829653 - ETPRO WEB_CLIENT Possible Adobe Reader TIFF Memory Corruption (CVE-2018-4903) (web_client.rules)
• 2829654 - ETPRO WEB_CLIENT Possible Adobe Reader EMF Memory Corruption M1 (CVE-2018-4906) (web_client.rules)
• 2829655 - ETPRO WEB_CLIENT Possible Adobe Reader EMF Memory Corruption M2 (CVE-2018-4906) (web_client.rules)
• 2847446 - ETPRO EXPLOIT Windows DirectWrite Heap-Based Buffer Overflow Inbound (CVE-2021-24093) (exploit.rules)
• 2847670 - ETPRO HUNTING Generic HTTP Header Buffer Overflow Check - http.content_len (hunting.rules)
• 2847671 - ETPRO HUNTING Generic HTTP Header Buffer Overflow Check - http.user_agent (hunting.rules)
• 2847672 - ETPRO HUNTING Generic HTTP Header Buffer Overflow Check - http.accept (hunting.rules)
• 2847694 - ETPRO HUNTING Generic HTTP Header Buffer Overflow Check - http.accept_lang (hunting.rules)
• 2847695 - ETPRO HUNTING Generic HTTP Header Buffer Overflow Check - http.accept_enc (hunting.rules)
• 2849429 - ETPRO EXPLOIT Possible dhcpcd IPv6 IA/NA Buffer Overflow [Advertise 0x02] Inbound (CVE-2019-11577) (exploit.rules)
• 2849647 - ETPRO HUNTING Generic Buffer Overflow - HTTP Host Field (hunting.rules)
• 2850122 - ETPRO EXPLOIT Possible OpenSLP Project/VMWare OpenSLP Heap Buffer Overflow (CVE-2019-5544) (exploit.rules)

Disabled and modified rules:

• 2020325 - ET EXPLOIT CVE-2015-0235 Exim Buffer Overflow Attempt (HELO) (exploit.rules)
• 2020326 - ET EXPLOIT CVE-2015-0235 Exim Buffer Overflow Attempt (EHLO) (exploit.rules)
• 2035896 - ET MALWARE Observed SocGholish Domain in TLS SNI (malware.rules)
• 2038954 - ET MALWARE SocGholish Domain in DNS Lookup (hair .2topost .com) (malware.rules)
• 2038956 - ET MALWARE SocGholish CnC Domain in DNS Lookup (moments .abledity .com) (malware.rules)
• 2038957 - ET MALWARE SocGholish Domain in DNS Lookup (notes .fumcpittsburg .org) (malware.rules)
• 2039001 - ET MALWARE SocGholish CnC Domain in DNS Lookup (jobs .registermegod .online) (malware.rules)
• 2039026 - ET MALWARE SocGholish Domain in DNS Lookup (soendorg .top) (malware.rules)
• 2039078 - ET MALWARE SocGholish Domain in DNS Lookup (premiere .4tosocialbeginners .com) (malware.rules)
• 2039119 - ET MALWARE SocGholish CnC Domain in DNS Lookup (internal .blessedfoodshalalmeat .com) (malware.rules)
• 2039136 - ET MALWARE SocGholish Domain in DNS Lookup (repo .allgoodsnservices .com) (malware.rules)
• 2039137 - ET MALWARE SocGholish Domain in DNS Lookup (family .1ablecommunity .com) (malware.rules)
• 2039138 - ET MALWARE SocGholish Domain in DNS Lookup (resort .reliablecommunityservices .com) (malware.rules)
• 2039416 - ET MALWARE SocGholish CnC Domain in DNS Lookup (offerings .love4lifewellness .com) (malware.rules)
• 2039443 - ET MALWARE SocGholish Domain in DNS Lookup (malware.rules)
• 2039444 - ET MALWARE SocGholish CnC Domain in DNS Lookup (malware.rules)
• 2039484 - ET MALWARE SocGholish CnC Domain in DNS Lookup (discover .jsfconnections .com) (malware.rules)
• 2039585 - ET MALWARE SocGholish Domain in DNS Lookup (shipwrecks .ggentile .com) (malware.rules)
• 2039597 - ET MALWARE SocGholish CnC Domain in DNS Lookup (portraits .studio-94-photography .com) (malware.rules)
• 2039617 - ET MALWARE SocGholish Domain in DNS Lookup (squad .incumetrics .com) (malware.rules)
• 2039620 - ET MALWARE SocGholish Domain in DNS Lookup (myfood .silverspringfoodproject .org) (malware.rules)
• 2039623 - ET MALWARE SocGholish Domain in DNS Lookup (podcasts .momsgrabcoffee .com) (malware.rules)
• 2039789 - ET MALWARE SocGholish Domain in DNS Lookup (collapse .tradingiswar .com) (malware.rules)
• 2039790 - ET MALWARE SocGholish Domain in DNS Lookup (founder .carflower .pics) (malware.rules)
• 2039791 - ET MALWARE SocGholish Domain in DNS Lookup (travel .dianatokaji .com) (malware.rules)
• 2039831 - ET MALWARE SocGholish Domain in DNS Lookup (montage .travelguidediva .com) (malware.rules)
• 2040144 - ET MALWARE SocGholish Domain in DNS Lookup (pastor .cntcog .org) (malware.rules)
• 2041784 - ET MALWARE SocGholish CnC Domain in DNS Lookup (* .fate .truelance .com) (malware.rules)
• 2043000 - ET MALWARE SocGholish Domain in DNS Lookup (navyseal .digijump .online) (malware.rules)
• 2043001 - ET MALWARE SocGholish CnC Domain in DNS Lookup (* .shrubs .emptyisland .pics) (malware.rules)
• 2043024 - ET MALWARE SocGholish Domain in DNS Lookup (people .fl2wealth .com) (malware.rules)
• 2043159 - ET MALWARE SocGholish Domain in DNS Lookup (kinematics .starmidwest .com) (malware.rules)
• 2043160 - ET MALWARE SocGholish Domain in DNS Lookup (passphrase .singinganewsong .com) (malware.rules)
• 2807656 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use After free (CVE-2014-0285) (web_client.rules)
• 2807657 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use After free (CVE-2014-0286) (web_client.rules)
• 2807806 - ETPRO WEB_CLIENT Possible User-After-Free CVE-2014-0309 (web_client.rules)
• 2807807 - ETPRO WEB_CLIENT Possible User-After-Free CVE-2014-0312 (web_client.rules)
• 2807811 - ETPRO WEB_CLIENT Possible IE8 Memory Corruption Vulnerability CVE-2014-0324 (web_client.rules)
• 2807934 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use After free (CVE-2014-1752) (web_client.rules)
• 2807985 - ETPRO WEB_CLIENT Possible Internet Explorer RCE CVE-2014-1776 (web_client.rules)
• 2808040 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use After free (CVE-2014-1815) (web_client.rules)
• 2808041 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use After free (CVE-2014-1815) (web_client.rules)
• 2808081 - ETPRO WEB_CLIENT Acrobat Reader Possible CVE-2014-0527 Use After Free (web_client.rules)
• 2808082 - ETPRO WEB_CLIENT Acrobat Reader Possible CVE-2014-0527 Use After Free (web_client.rules)
• 2808142 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use After free (CVE-2014-0282) (web_client.rules)
• 2808143 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use After free (CVE-2014-1762) (web_client.rules)
• 2808147 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use After free (CVE-2014-1789) (web_client.rules)
• 2808149 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use After free (CVE-2014-1795) (web_client.rules)
• 2808150 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use After free (CVE-2014-1797) (web_client.rules)

Removed rules:

• 2018262 - ET EXPLOIT_KIT DRIVEBY Nuclear EK IE Exploit CVE-2013-2551 March 12 2014 (exploit_kit.rules)