|
|
 |
 |
网络入侵防护系统(NIPS)规则升级包列表
| 规则升级包:eoi_v5_rule_5.0.0.334_2012-02-02.exe |
大小:5.50M |
MD5:6e9ffff2268a8af75ebb8e079532c7c1 |
| 规则集:rule_2012-02-02.eoi |
大小:215.6K |
MD5:d5d47463b0fa68efe723971f0ed13acf |
描述:绿盟NIDS/NIPS规则升级文件,适用于v5.0和v5.5两个版本,规则更新列表如下:
修改: 50136 即时通信软件Jabber用户登录
[注意事项]:
1.规则升级包用于控制台规则库离线方式升级。下载文件是 .EXE 可执行文件,如果浏览器在下载过程中出于安全原因自动去除了 .EXE 后缀,请在下载到本地后加上 .EXE 后缀执行即可。
2.最新规则集(rule.eoi)可直接导入引擎使用,一般方便用户通过WEB管理方式进行引擎规则库更新。
NsFocus NIDS/NIPS v5.0 and v5.5 Signature Set Update:
Modify: 50136 Instant Messaging Software Jabber User Login
[Notes]:
1.The Signature Set Update file is used to perform an offline update. It is a normal windows executable , but the ".exe" extension maybe purged by some web browsers for security reason when the file is downloaded. If you get a file without any extension, please append ".exe" by hand.
2.The newest signature set (rule.eoi) can be imported directly via web console. |
| 发布时间:2012-02-02 16:00:00 |
| 规则升级包:eoi_v5_rule_5.0.0.333_2012-01-27.exe |
大小:5.50M |
MD5:1ebab81b7d8264b41720e69209dfc413 |
| 规则集:rule_2012-01-27.eoi |
大小:215.6K |
MD5:052f6c1c4d18f0bee8d83500c4051daf |
描述:绿盟NIDS/NIPS规则升级文件,适用于v5.0和v5.5两个版本,规则更新列表如下:
修改: 50077 P2P文件共享工具BitTorrent获取文件信息
[注意事项]:
1.规则升级包用于控制台规则库离线方式升级。下载文件是 .EXE 可执行文件,如果浏览器在下载过程中出于安全原因自动去除了 .EXE 后缀,请在下载到本地后加上 .EXE 后缀执行即可。
2.最新规则集(rule.eoi)可直接导入引擎使用,一般方便用户通过WEB管理方式进行引擎规则库更新。
NsFocus NIDS/NIPS v5.0 and v5.5 Signature Set Update:
Modify: 50077 P2P File Sharing Tool BitTorrent Obtainning File Information
[Notes]:
1.The Signature Set Update file is used to perform an offline update. It is a normal windows executable , but the ".exe" extension maybe purged by some web browsers for security reason when the file is downloaded. If you get a file without any extension, please append ".exe" by hand.
2.The newest signature set (rule.eoi) can be imported directly via web console. |
| 发布时间:2012-01-27 18:26:10 |
| 规则升级包:eoi_v5_rule_5.0.0.331_2012-01-19.exe |
大小:5.50M |
MD5:6fb32835ffbd176787185668f12ed6e4 |
| 规则集:rule_2012-01-19.eoi |
大小:215.6K |
MD5:dc99d98455fc903a2ba0ac69bcfc8d59 |
描述:绿盟NIDS/NIPS规则升级文件,适用于v5.0和v5.5两个版本,规则更新列表如下:
修改: 50157 BSD Telnet服务器获取客户端信息
[注意事项]:
1.规则升级包用于控制台规则库离线方式升级。下载文件是 .EXE 可执行文件,如果浏览器在下载过程中出于安全原因自动去除了 .EXE 后缀,请在下载到本地后加上 .EXE 后缀执行即可。
2.最新规则集(rule.eoi)可直接导入引擎使用,一般方便用户通过WEB管理方式进行引擎规则库更新。
NsFocus NIDS/NIPS v5.0 and v5.5 Signature Set Update:
Modify: 50157 BSD Telnet Server Client Information Disclosure
[Notes]:
1.The Signature Set Update file is used to perform an offline update. It is a normal windows executable , but the ".exe" extension maybe purged by some web browsers for security reason when the file is downloaded. If you get a file without any extension, please append ".exe" by hand.
2.The newest signature set (rule.eoi) can be imported directly via web console. |
| 发布时间:2012-01-19 07:43:40 |
| 规则升级包:eoi_v5_rule_5.0.0.330_2012-01-11.exe |
大小:5.50M |
MD5:e321b7f5176a88fc3eda966d926902bc |
| 规则集:rule_2012-01-11.eoi |
大小:215.5K |
MD5:355eba3c872c6f9caf4f904f24ca1a7d |
描述:绿盟NIDS/NIPS规则升级文件,适用于v5.0和v5.5两个版本,规则更新列表如下:
新增: 21340 CVE-2012-0003 MIDI远程代码执行漏洞(MS12-004)
新增: 21341 CVE-2012-0007 Anti-XSS库绕过漏洞(MS12-007)
新增: 21342 CVE-2012-0009 Windows Object Packager远程代码执行漏洞(MS12-002)
新增: 21343 CVE-2011-4370 Adobe Reader/Acrobat内存破坏漏洞
新增: 21344 CVE-2011-4372 Adobe Reader/Acrobat内存破坏漏洞
新增: 21345 CVE-2011-4373 Adobe Reader/Acrobat内存破坏漏洞
新增: 21346 CVE-2011-4371 Adobe Reader/Acrobat堆破坏漏洞
[注意事项]:
1.规则升级包用于控制台规则库离线方式升级。下载文件是 .EXE 可执行文件,如果浏览器在下载过程中出于安全原因自动去除了 .EXE 后缀,请在下载到本地后加上 .EXE 后缀执行即可。
2.最新规则集(rule.eoi)可直接导入引擎使用,一般方便用户通过WEB管理方式进行引擎规则库更新。
NsFocus NIDS/NIPS v5.0 and v5.5 Signature Set Update:
New: 21340 CVE-2012-0003 MIDI Remote Code Execution Vulnerability(MS12-004)
New: 21341 CVE-2012-0007 Anti-XSS Library Bypass Vulnerability(MS12-007)
New: 21342 CVE-2012-0009 Windows Object Packager Remote Code Execution Vulnerability(MS12-002)
New: 21343 CVE-2011-4370 Adobe Reader/Acrobat Memory Corruption Vulnerability
New: 21344 CVE-2011-4372 Adobe Reader/Acrobat Memory Corruption Vulnerability
New: 21345 CVE-2011-4373 Adobe Reader/Acrobat Memory Corruption Vulnerability
New: 21346 CVE-2011-4371 Adobe Reader/Acrobat Heap Corruption Vulnerability
[Notes]:
1.The Signature Set Update file is used to perform an offline update. It is a normal windows executable , but the ".exe" extension maybe purged by some web browsers for security reason when the file is downloaded. If you get a file without any extension, please append ".exe" by hand.
2.The newest signature set (rule.eoi) can be imported directly via web console. |
| 发布时间:2012-01-11 08:38:53 |
| 规则升级包:eoi_v5_rule_5.0.0.328_2012-01-09.exe |
大小:5.49M |
MD5:5a3d0e65a45f53e8f410e3cf291d44da |
| 规则集:rule_2012-01-09.eoi |
大小:215.3K |
MD5:4b56231af8076654d24a0f3ee6c31424 |
描述:绿盟NIDS/NIPS规则升级文件,适用于v5.0和v5.5两个版本,规则更新列表如下:
新增: 41035 SRAT木马程序通信
新增: 41036 zxshell木马程序通信
新增: 50446 即时通信工具Web MSN文件传送通信
修改: 40513 Windows系统下Ghost木马通信
修改: 50107 网络游戏平台联众游戏登录
[注意事项]:
1.规则升级包用于控制台规则库离线方式升级。下载文件是 .EXE 可执行文件,如果浏览器在下载过程中出于安全原因自动去除了 .EXE 后缀,请在下载到本地后加上 .EXE 后缀执行即可。
2.最新规则集(rule.eoi)可直接导入引擎使用,一般方便用户通过WEB管理方式进行引擎规则库更新。
NsFocus NIDS/NIPS v5.0 and v5.5 Signature Set Update:
New: 41035 SRAT Trojan Communication
New: 41036 zxshell Trojan Communication
New: 50446 Instant Messaging Tool Web MSN Sending File Attempt
Modify: 40513 Trojan Ghost Communication on Windows
Modify: 50107 Online Game Platform "Ourgame" Login
[Notes]:
1.The Signature Set Update file is used to perform an offline update. It is a normal windows executable , but the ".exe" extension maybe purged by some web browsers for security reason when the file is downloaded. If you get a file without any extension, please append ".exe" by hand.
2.The newest signature set (rule.eoi) can be imported directly via web console. |
| 发布时间:2012-01-10 13:31:23 |
| 规则升级包:eoi_v5_rule_5.0.0.327_2012-01-06.exe |
大小:5.49M |
MD5:ce350d54c7cbd7d9c524874ef8f72916 |
| 规则集:rule_2012-01-06.eoi |
大小:215.3K |
MD5:ffae49035c68a061e251b38860e46e38 |
描述:绿盟NIDS/NIPS规则升级文件,适用于v5.0和v5.5两个版本,规则更新列表如下:
新增: 10322 CVE-2011-3414 Microsoft ASP.NET哈希冲突远程拒绝服务漏洞
[注意事项]:
1.规则升级包用于控制台规则库离线方式升级。下载文件是 .EXE 可执行文件,如果浏览器在下载过程中出于安全原因自动去除了 .EXE 后缀,请在下载到本地后加上 .EXE 后缀执行即可。
2.最新规则集(rule.eoi)可直接导入引擎使用,一般方便用户通过WEB管理方式进行引擎规则库更新。
NsFocus NIDS/NIPS v5.0 and v5.5 Signature Set Update:
New: 10322 CVE-2011-3414 Microsoft ASP.NET Hashe Collision Denial Of Service Vulnerability(MS11-100)
[Notes]:
1.The Signature Set Update file is used to perform an offline update. It is a normal windows executable , but the ".exe" extension maybe purged by some web browsers for security reason when the file is downloaded. If you get a file without any extension, please append ".exe" by hand.
2.The newest signature set (rule.eoi) can be imported directly via web console. |
| 发布时间:2012-01-06 16:00:38 |
| 规则升级包:eoi_v5_rule_5.0.0.325_2011-12-29.exe |
大小:5.48M |
MD5:30a25b6b9bca12516e380ecd9f83aacf |
| 规则集:rule_2011-12-29.eoi |
大小:215.2K |
MD5:940d0b74e79511489258eedc4fcdfc15 |
描述:绿盟NIDS/NIPS规则升级文件,适用于v5.0和v5.5两个版本,规则更新列表如下:
修改: 50043 POP3服务用户认证
[注意事项]:
1.规则升级包用于控制台规则库离线方式升级。下载文件是 .EXE 可执行文件,如果浏览器在下载过程中出于安全原因自动去除了 .EXE 后缀,请在下载到本地后加上 .EXE 后缀执行即可。
2.最新规则集(rule.eoi)可直接导入引擎使用,一般方便用户通过WEB管理方式进行引擎规则库更新。
NsFocus NIDS/NIPS v5.0 and v5.5 Signature Set Update:
Modify: 50043 POP3 Service User Authentication
[Notes]:
1.The Signature Set Update file is used to perform an offline update. It is a normal windows executable , but the ".exe" extension maybe purged by some web browsers for security reason when the file is downloaded. If you get a file without any extension, please append ".exe" by hand.
2.The newest signature set (rule.eoi) can be imported directly via web console. |
| 发布时间:2011-12-29 17:49:31 |
| 规则升级包:eoi_v5_rule_5.0.0.324_2011-12-22.exe |
大小:5.48M |
MD5:ae309cc4b3a6cc75733d507296355549 |
| 规则集:rule_2011-12-22.eoi |
大小:215.2K |
MD5:cc1e9eaf105fd0ac9f7b6d52e02e6ad2 |
描述:绿盟NIDS/NIPS规则升级文件,适用于v5.0和v5.5两个版本,规则更新列表如下:
新增: 21327 CVE-2011-2462 Adobe Reader U3D数据处理代码执行漏洞
新增: 21329 RhinoSoft Serv-U FTP Server远程目录遍历漏洞
新增: 41034 GHOST2011 木马通信
新增: 41033 Black Hole 木马通信
新增: 50444 网游"大冲锋"用户登陆
修改: 50074 即时通信软件ICQ用户登录
[注意事项]:
1.规则升级包用于控制台规则库离线方式升级。下载文件是 .EXE 可执行文件,如果浏览器在下载过程中出于安全原因自动去除了 .EXE 后缀,请在下载到本地后加上 .EXE 后缀执行即可。
2.最新规则集(rule.eoi)可直接导入引擎使用,一般方便用户通过WEB管理方式进行引擎规则库更新。
NsFocus NIDS/NIPS v5.0 and v5.5 Signature Set Update:
New: 21327 CVE-2011-2462 Adobe Acrobat and Reader U3D Memory Corruption Vulnerability
New: 21329 RhinoSoft Serv-U FTP Server Remote Directory Traversal Vulnerability
New: 41034 GHOST2011 Trojan Communication
New: 41033 Black Hole Trojan Communication
New: 50444 Online Game "Large Charge" Network Communication Behavior
Modify: 50074 Instant Messaging Software ICQ User Login
[Notes]:
1.The Signature Set Update file is used to perform an offline update. It is a normal windows executable , but the ".exe" extension maybe purged by some web browsers for security reason when the file is downloaded. If you get a file without any extension, please append ".exe" by hand.
2.The newest signature set (rule.eoi) can be imported directly via web console. |
| 发布时间:2011-12-22 11:37:50 |
| 规则升级包:eoi_v5_rule_5.0.0.323_2011-12-13.exe |
大小:5.49M |
MD5:54de4bfca6d794d6d9ff1d171296eaf2 |
| 规则集:rule_2011-12-13.eoi |
大小:215.1K |
MD5:7ea1dee3cd925dd0c220d3e76c4503fa |
描述:绿盟NIDS/NIPS规则升级文件,适用于v5.0和v5.5两个版本,规则更新列表如下:
新增: 21330 CVE-2011-3397 Microsoft 时钟远程代码执行漏洞
新增: 21331 CVE-2011-3411 Microsoft Publisher无效指针远程代码执行漏洞
新增: 21332 CVE-2011-3401 Windows Media远程代码执行漏洞
新增: 21333 CVE-2011-3400 Microsoft Windows OLE32远程代码执行漏洞
新增: 21334 CVE-2011-2019 IE不安全库加载漏洞
新增: 21335 CVE-2011-3396 Microsoft PowerPoint不安全库加载远程代码执行漏洞
新增: 21336 CVE-2011-3412 Microsoft Publisher内存破坏漏洞
新增: 21337 CVE-2011-3413 Microsoft PowerPoint OfficeArt图形逆向编译漏洞
新增: 21338 CVE-2011-3403 Microsoft Excel远程代码执行漏洞
新增: 21339 CVE-2011-3410 Microsoft Publisher数组索引越界导致的远程代码执行漏洞
[注意事项]:
1.规则升级包用于控制台规则库离线方式升级。下载文件是 .EXE 可执行文件,如果浏览器在下载过程中出于安全原因自动去除了 .EXE 后缀,请在下载到本地后加上 .EXE 后缀执行即可。
2.最新规则集(rule.eoi)可直接导入引擎使用,一般方便用户通过WEB管理方式进行引擎规则库更新。
NsFocus NIDS/NIPS v5.0 and v5.5 Signature Set Update:
New: 21330 CVE-2011-3397 Microsoft Time Remote Code Execution Vulnerability(MS11-090)
New: 21331 CVE-2011-3411 Microsoft Publisher Invalid Pointer Remote Code Execution Vulnerability(MS11-091)
New: 21332 CVE-2011-3401 Windows Media Remote Code Execution Vulnerability(MS11-092)
New: 21333 CVE-2011-3400 Microsoft Windows OLE32 Remote Code Execution Vulnerability(MS11-093)
New: 21334 CVE-2011-2019 Internet Explorer Insecure Library Loading Vulnerability(MS11-099)
New: 21335 CVE-2011-3396 Microsoft PowerPoint Insecure Library Loading Remote Code Execution Vulnerability(MS11-094)
New: 21336 CVE-2011-3412 Microsoft Publisher Memory Corruption Vulnerability(MS11-091)
New: 21337 CVE-2011-3413 Microsoft PowerPoint OfficeArt Shape RCE Vulnerability(MS11-094)
New: 21338 CVE-2011-3403 Microsoft Excel Remote Code Execution Vulnerability(MS11-096)
New: 21339 CVE-2011-3410 Microsoft Publisher Array Index Out of Bounds vulnerability(MS11-091)
[Notes]:
1.The Signature Set Update file is used to perform an offline update. It is a normal windows executable , but the ".exe" extension maybe purged by some web browsers for security reason when the file is downloaded. If you get a file without any extension, please append ".exe" by hand.
2.The newest signature set (rule.eoi) can be imported directly via web console. |
| 发布时间:2011-12-13 19:09:22 |
| 规则升级包:eoi_v5_rule_5.0.0.321_2011-12-08.exe |
大小:5.48M |
MD5:4af7b683ae5350118dbe9fcd88a02d89 |
| 规则集:rule_2011-12-08.eoi |
大小:214.6K |
MD5:f1b20238ca0fb9924a84eaa97630eb69 |
描述:绿盟NIDS/NIPS规则升级文件,适用于v5.0和v5.5两个版本,规则更新列表如下:
修改: 50158 Telnet服务IAC选项炸弹攻击
[注意事项]:
1.规则升级包用于控制台规则库离线方式升级。下载文件是 .EXE 可执行文件,如果浏览器在下载过程中出于安全原因自动去除了 .EXE 后缀,请在下载到本地后加上 .EXE 后缀执行即可。
2.最新规则集(rule.eoi)可直接导入引擎使用,一般方便用户通过WEB管理方式进行引擎规则库更新。
NsFocus NIDS/NIPS v5.0 and v5.5 Signature Set Update:
Modify: 50158 Telnet Service IAC Option Bomb
[Notes]:
1.The Signature Set Update file is used to perform an offline update. It is a normal windows executable , but the ".exe" extension maybe purged by some web browsers for security reason when the file is downloaded. If you get a file without any extension, please append ".exe" by hand.
2.The newest signature set (rule.eoi) can be imported directly via web console. |
| 发布时间:2011-12-08 18:14:50 |
Page (29) < [1] 2 3 4 5 6 ... > |
|
|
|
|
