|
|
 |
 |
网络入侵保护系统(NIPS)规则升级包列表
| 规则升级包:eoi_v5_rule_5.0.0.102_2008-05-15.exe |
大小:10.59M |
MD5:ff72d975b0b2ecc82966bd1297c9e0e5 |
描述:冰之眼NIPS规则升级文件,适用于v5.0和v5.5两个版本,规则更新列表如下:
修改:40651 利用CGI程序执行SQL注入攻击
修改:20652 RealVNC远程绕过认证攻击
新增:50228 迅雷看看在线流媒体播放(TCP)
新增:50229 迅雷看看在线流媒体播放(UDP)
[注意事项]:
1.规则升级包用于冰之眼控制台规则库离线方式升级。下载文件是 .EXE 可执行文件,如果浏览器在下载过程中出于安全原因自动去除了 .EXE
后缀,请在下载到本地后加上 .EXE 后缀执行即可。
2.最新规则集(rule.eoi)可直接导入引擎使用,一般方便用户通过WEB管理方式进行引擎规则库更新。
Iceye NIPS Signature Set Update for v5.0 and v5.5,Signature Set Update:
Modify:40651 SQL Injection Execution via CGI Program
Modify:20652 RealVNC Remote Authentication Bypass Attack
New: 50228 Xunlei Kankan Online Stream Media Playing(TCP)
New: 50229 Xunlei Kankan Online Stream Media Playing(UDP)
[Notes]:
1.The Signature Set Update file is used to perform an offline update. It is a normal windows executable , but the '.exe'
extension maybe purged by some web browsers for security reason when the file is downloaded. If you get a file without any
extension, please append '.exe' by hand.
2.The newest signature set (rule.eoi) can be imported directly via web console. |
| 发布时间:2008-05-15 17:10:52 |
| 规则升级包:eoi_v5_rule_5.0.0.101_2008-05-08.exe |
大小:10.59M |
MD5:f53baef8a297b662252320e78e2378e9 |
描述:冰之眼NIPS规则升级文件,适用于v5.0和v5.5两个版本,规则更新列表如下:
修改:40651 利用CGI程序执行SQL注入攻击
新增:20960 HP OpenView网络节点管理器ovspmd远程堆溢出攻击
新增:20963 RealNetworks RealPlayer rmoc3260.dll ActiveX控件内存破坏攻击
[注意事项]:
1.规则升级包用于冰之眼控制台规则库离线方式升级。下载文件是 .EXE 可执行文件,如果浏览器在下载过程中出于安全原因自动去除了 .EXE 后缀,请在下载到本地后加上 .EXE 后缀执行即可。
2.最新规则集(rule.eoi)可直接导入引擎使用,一般方便用户通过WEB管理方式进行引擎规则库更新。
Iceye NIPS Signature Set Update for v5.0 and v5.5,Signature Set Update:
Modify:40651 SQL Injection Execution via CGI Program
New:20960 HP OpenView Network Node Manager Buffer Overflow Attack
New:20963 RealNetworks RealPlayer rmoc3260.dll ActiveX Control Memory Corruption Attack
[Notes]:
1.The Signature Set Update file is used to perform an offline update. It is a normal windows executable , but the '.exe' extension maybe purged by some web browsers for security reason when the file is downloaded. If you get a file without any extension, please append '.exe' by hand.
2.The newest signature set (rule.eoi) can be imported directly via web console. |
| 发布时间:2008-05-08 12:15:00 |
| 规则升级包:eoi_v5_rule_5.0.0.100_2008-04-30.exe |
大小:10.59M |
MD5:1b65e47e43864f4bdd940ec8ad3e1ddb |
描述:冰之眼NIPS规则升级文件,适用于v5.0和v5.5两个版本,规则更新列表如下:
修改:30473 TELNET服务暴力猜测用户口令
修改:30480 利用QuikStore Shopping Cart quikstore.cgi脚本漏洞远程读取任意文件
修改:40651 利用CGI程序执行SQL注入攻击
修改:20659 Business Objects Crystal Reports Web表单查看器目录遍历攻击
[注意事项]:
1.规则升级包用于冰之眼控制台规则库离线方式升级。下载文件是 .EXE 可执行文件,如果浏览器在下载过程中出于安全原因自动去除了 .EXE 后缀,请在下载到本地后加上 .EXE 后缀执行即可。
2.最新规则集(rule.eoi)可直接导入引擎使用,一般方便用户通过WEB管理方式进行引擎规则库更新。
Iceye NIPS Signature Set Update for v5.0 and v5.5,Signature Set Update:
Modify:30473 User Password Brute Force in TELNET Service
Modify:30480 Remote File Reading via QuikStore Shopping Cart quikstore.cgi
Modify:40651 SQL Injection Execution via CGI Program
Modify:20659 Business Objects Crystal Reports Web Sheet Viewer Catalog Traversal Attack
[Notes]:
1.The Signature Set Update file is used to perform an offline update. It is a normal windows executable , but the '.exe' extension maybe purged by some web browsers for security reason when the file is downloaded. If you get a file without any extension, please append '.exe' by hand.
2.The newest signature set (rule.eoi) can be imported directly via web console. |
| 发布时间:2008-04-30 13:52:55 |
| 规则升级包:eoi_v5_rule_5.0.0.99_2008-04-24.exe |
大小:10.59M |
MD5:00fd345f98eba6d09fe7e87abe2d6a8a |
描述:冰之眼NIPS规则升级文件,适用于v5.0和v5.5两个版本,规则更新列表如下:
修改:40432 HTTP服务基本登录认证失败
修改:30473 TELNET服务暴力猜测用户口令
修改:40651 利用CGI程序执行SQL注入攻击
修改:50141 PPStream网络电视流媒体播放
新增:50226 阿里旺旺即时通信软件用户登录
[注意事项]:
1.规则升级包用于冰之眼控制台规则库离线方式升级。下载文件是 .EXE 可执行文件,如果浏览器在下载过程中出于安全原因自动去除了 .EXE 后缀,请在下载到本地后加上 .EXE 后缀执行即可。
2.最新规则集(rule.eoi)可直接导入引擎使用,一般方便用户通过WEB管理方式进行引擎规则库更新。
Iceye NIPS Signature Set Update for v5.0 and v5.5,Signature Set Update:
Modify:40432 HTTP Service Login Authentication Failure
Modify:30473 User Password Brute Force in TELNET Service
Modify:40651 SQL Injection Execution via CGI Program
Modify:50141 PPStream Online TV Stream Media Playing
New:50226 Instant Messaging Software Alibaba User Login
[Notes]:
1.The Signature Set Update file is used to perform an offline update. It is a normal windows executable , but the '.exe' extension maybe purged by some web browsers for security reason when the file is downloaded. If you get a file without any extension, please append '.exe' by hand.
2.The newest signature set (rule.eoi) can be imported directly via web console. |
| 发布时间:2008-04-24 10:21:52 |
| 规则升级包:eoi_v5_rule_5.0.0.98_2008-04-17.exe |
大小:10.59M |
MD5:5f9722fd7c64954656c6d974a8e6437c |
描述:冰之眼NIPS规则升级文件,适用于v5.0和v5.5两个版本,规则更新列表如下:
修改:40432 HTTP服务基本登录认证失败
修改:30270 利用NULL字节漏洞获取JRun JSP源代码攻击
修改:20704 Easy File Sharing FTP Server超长PASS命令参数远程缓冲区溢出攻击
[注意事项]:
1.规则升级包用于冰之眼控制台规则库离线方式升级。下载文件是 .EXE 可执行文件,如果浏览器在下载过程中出于安全原因自动去除了 .EXE 后缀,请在下载到本地后加上 .EXE 后缀执行即可。
2.最新规则集(rule.eoi)可直接导入引擎使用,一般方便用户通过WEB管理方式进行引擎规则库更新。
Iceye NIPS Signature Set Update for v5.0 and v5.5,Signature Set Update:
Modify:40432 HTTP Service Login Authentication Failure
Modify:30270 JRun JSP Source Code Exposure via NULL Character Vulnerability
Modify:20704 Easy File Sharing FTP Server Overly Long PASS Command Parameter Remote Buffer Overflow
[Notes]:
1.The Signature Set Update file is used to perform an offline update. It is a normal windows executable , but the '.exe' extension maybe purged by some web browsers for security reason when the file is downloaded. If you get a file without any extension, please append '.exe' by hand.
2.The newest signature set (rule.eoi) can be imported directly via web console. |
| 发布时间:2008-04-17 12:58:23 |
| 规则升级包:eoi_v5_rule_5.0.0.97_2008-04-09.exe |
大小:10.59M |
MD5:37db5a40ee32c449840d28ad10d8dc96 |
描述:冰之眼NIPS规则升级文件,适用于v5.0和v5.5两个版本,规则更新列表如下:
修改:40432 HTTP服务基本登录认证失败
修改:10015 Microsoft IIS fpcount.exe程序漏洞扫描探测
修改:20692 phpBB Hacks List模块hack_id远程SQL注入攻击
修改:20800 Microsoft Windows动画光标畸形ANI头结构远程栈溢出攻击
[注意事项]:
1.规则升级包用于冰之眼控制台规则库离线方式升级。下载文件是 .EXE 可执行文件,如果浏览器在下载过程中出于安全原因自动去除了 .EXE 后缀,请在下载到本地后加上 .EXE 后缀执行即可。
2.最新规则集(rule.eoi)可直接导入引擎使用,一般方便用户通过WEB管理方式进行引擎规则库更新。
Iceye NIPS Signature Set Update for v5.0 and v5.5,Signature Set Update:
Modify:40432 HTTP Service Login Authentication Failure
Modify:10015 Microsoft IIS fpcount.exe Program Vulnerability Detection
Modify:20692 phpBB Hacks List Module hack_id Remote SQL Injection
Modify:20800 Microsoft Windows Animated Cursor Malformed ANI Header Structure Remote Stack Overflow
[Notes]:
1.The Signature Set Update file is used to perform an offline update. It is a normal windows executable , but the '.exe' extension maybe purged by some web browsers for security reason when the file is downloaded. If you get a file without any extension, please append '.exe' by hand.
2.The newest signature set (rule.eoi) can be imported directly via web console. |
| 发布时间:2008-04-09 13:27:30 |
| 规则升级包:eoi_v5_rule_5.0.0.96_2008-04-03.exe |
大小:10.59M |
MD5:eb10a82c6acbc55ff1958ef22c94a136 |
描述:冰之眼NIPS规则升级文件,适用于v5.0和v5.5两个版本,规则更新列表如下:
修改:30149 Index Server .htw读取文件漏洞扫描探测
修改:10142 3Com 3CDaemon TFTP保留设备名拒绝服务攻击
新增:20959 ActivePDF服务器报文处理远程堆溢出攻击
[注意事项]:
1.规则升级包用于冰之眼控制台规则库离线方式升级。下载文件是 .EXE 可执行文件,如果浏览器在下载过程中出于安全原因自动去除了 .EXE 后缀,请在下载到本地后加上 .EXE 后缀执行即可。
2.最新规则集(rule.eoi)可直接导入引擎使用,一般方便用户通过WEB管理方式进行引擎规则库更新。
Iceye NIPS Signature Set Update for v5.0 and v5.5,Signature Set Update:
Modify:30149 Index Server .htw File Reading Detection
Modify:10142 3Com 3CDaemon TFTP Reserved Device Name Denial of Service
New:20959 ActivePDF Server Packet Processing Remote Heap Overflow Attack
[Notes]:
1.The Signature Set Update file is used to perform an offline update. It is a normal windows executable , but the '.exe' extension maybe purged by some web browsers for security reason when the file is downloaded. If you get a file without any extension, please append '.exe' by hand.
2.The newest signature set (rule.eoi) can be imported directly via web console. |
| 发布时间:2008-04-03 09:12:50 |
| 规则升级包:eoi_v5_rule_5.0.0.95_2008-03-28.exe |
大小:10.59M |
MD5:cc810ae9a75ec0470acbb5537a376102 |
描述:冰之眼NIPS规则升级文件,适用于v5.0和v5.5两个版本,规则更新列表如下:
修改:20388 利用PHPDig config.php脚本漏洞远程执行命令
修改:30550 Minis month参数远程目录遍历攻击
新增:20956 金山毒霸在线升级模块ActiveX控件远程堆溢出攻击
新增:20957 Symantec Backup Exec调度程序ActiveX栈溢出攻击
[注意事项]:
1.规则升级包用于冰之眼控制台规则库离线方式升级。下载文件是 .EXE 可执行文件,如果浏览器在下载过程中出于安全原因自动去除了 .EXE 后缀,请在下载到本地后加上 .EXE 后缀执行即可。
2.最新规则集(rule.eoi)可直接导入引擎使用,一般方便用户通过WEB管理方式进行引擎规则库更新。
Iceye NIPS Signature Set Update for v5.0 and v5.5,Signature Set Update:
Modify:20388 Remote Code Execution via PHPDig config.php Script Vulnerability
Modify:30550 Minis month Parameter Remote Directory Traversal
New:20956 Kingsoft Antivirus Online Update Module ActiveX Control Remote Buffer Overflow Attack
New:20957 Symantec Backup Exec Scheduler ActiveX Control Stack Buffer Overflow Attack
[Notes]:
1.The Signature Set Update file is used to perform an offline update. It is a normal windows executable , but the '.exe' extension maybe purged by some web browsers for security reason when the file is downloaded. If you get a file without any extension, please append '.exe' by hand.
2.The newest signature set (rule.eoi) can be imported directly via web console. |
| 发布时间:2008-03-28 11:19:51 |
| 规则升级包:eoi_v5_rule_5.0.0.94_2008-03-19.exe |
大小:10.56M |
MD5:9f8195bb3a7d10ad32ecc50b5acbccb6 |
描述:冰之眼NIPS规则升级文件,适用于v5.0和v5.5两个版本,规则更新列表如下:
修改:50073 P2P文件共享工具eDonkey/ed2k请求文件片断
修改:50077 P2P文件共享工具BitTorrent获取文件信息
修改:20899 Macrovision InstallShield Update Service ActiveX非授权下载执行任意程序攻击
修改:20910 Microsoft IE FirefoxURL协议处理器命令注入攻击
[注意事项]:
1.规则升级包用于冰之眼控制台规则库离线方式升级。下载文件是 .EXE 可执行文件,如果浏览器在下载过程中出于安全原因自动去除了 .EXE 后缀,请在下载到本地后加上 .EXE 后缀执行即可。
2.最新规则集(rule.eoi)可直接导入引擎使用,一般方便用户通过WEB管理方式进行引擎规则库更新。
Iceye NIPS Signature Set Update for v5.0 and v5.5,Signature Set Update:
Modify:50073 P2P File Sharing Tool eDonkey/ed2k File Request Fragment (TCP)
Modify:50077 P2P File Sharing Tool BitTorrent File Information Disclosure
Modify:20899 Macrovision InstallShield Update Service ActiveX Unauthorized Download Arbitrary Program Execution Attack
Modify:20910 Microsoft Internet Explorer Mozilla Firefox URL Handler Command Injection Attack
[Notes]:
1.The Signature Set Update file is used to perform an offline update. It is a normal windows executable , but the '.exe' extension maybe purged by some web browsers for security reason when the file is downloaded. If you get a file without any extension, please append '.exe' by hand.
2.The newest signature set (rule.eoi) can be imported directly via web console. |
| 发布时间:2008-03-19 17:51:10 |
| 规则升级包:eoi_v5_rule_5.0.0.93_2008-03-13.exe |
大小:10.56M |
MD5:0ae27356a60c4a95f47c4046caaa620e |
描述:冰之眼NIPS规则升级文件,适用于v5.0和v5.5两个版本,规则更新列表如下:
修改:40651 利用CGI程序执行SQL注入攻击
修改:20942 BitDefender在线扫描器OScan.OCX ActiveX控件堆溢出攻击
修改:20945 Microsoft Visual FoxPro vfp6r.dll ActiveX控件任意代码执行攻击
新增:50224 UUSee网络电视流媒体播放
[注意事项]:
1.规则升级包用于冰之眼控制台规则库离线方式升级。下载文件是 .EXE 可执行文件,如果浏览器在下载过程中出于安全原因自动去除了 .EXE 后缀,请在下载到本地后加上 .EXE 后缀执行即可。
2.最新规则集(rule.eoi)可直接导入引擎使用,一般方便用户通过WEB管理方式进行引擎规则库更新。
Iceye NIPS Signature Set Update for v5.0 and v5.5,Signature Set Update:
Modify:40651 SQL Injection Execution via CGI Program
Modify:20942 BitDefender Online Scanner OScan.OCX ActiveX Control Heap Buffer Overflow Attack
Modify:20945 Microsoft Visual FoxPro vfp6r.dll ActiveX Control Arbitrary Command Execution Attack
New:50224 UUSee Playing Video Stream Media
[Notes]:
1.The Signature Set Update file is used to perform an offline update. It is a normal windows executable , but the '.exe' extension maybe purged by some web browsers for security reason when the file is downloaded. If you get a file without any extension, please append '.exe' by hand.
2.The newest signature set (rule.eoi) can be imported directly via web console. |
| 发布时间:2008-03-13 15:33:30 |
Page (8) < [1] 2 3 4 5 6 ... > |
|
|
|
|
