[Emerging-updates] Live Commit Output

emerging@emergingthreats.net emerging at emergingthreats.net
Fri Dec 25 14:25:19 EST 2009


[***] Results from Oinkmaster started Fri Dec 25 14:25:19 2009 [***]

[+++]          Added rules:          [+++]

 2010555 - ET WEB_SPECIFIC_APPS Joomla com_joaktree Component treeId Parameter SELECT FROM SQL Injection Attempt (emerging-web_specific_apps.rules)
 2010556 - ET WEB_SPECIFIC_APPS Joomla com_joaktree Component treeId Parameter DELETE FROM SQL Injection Attempt (emerging-web_specific_apps.rules)
 2010557 - ET WEB_SPECIFIC_APPS Joomla com_joaktree Component treeId Parameter UNION SELECT SQL Injection Attempt (emerging-web_specific_apps.rules)
 2010558 - ET WEB_SPECIFIC_APPS Joomla com_joaktree Component treeId Parameter INSERT INTO SQL Injection Attempt (emerging-web_specific_apps.rules)
 2010559 - ET WEB_SPECIFIC_APPS Joomla com_joaktree Component treeId Parameter UPDATE SET SQL Injection Attempt (emerging-web_specific_apps.rules)
 2010561 - ET WEB_CLIENT Microsoft Whale Intelligent App Gateway ActiveX Buffer Overflow Function call-2 (emerging-web_client.rules)
 2010562 - ET WEB_CLIENT Microsoft Whale Intelligent Application Gateway ActiveX Buffer Overflow-1 (emerging-web_client.rules)
 2010563 - ET WEB_CLIENT Microsoft Whale Intelligent Application Gateway ActiveX Buffer Overflow-2 (emerging-web_client.rules)
 2010564 - ET WEB_SPECIFIC_APPS Sisplet CMS komentar.php site_path Parameter Remote File Inclusion Attempt (emerging-web_specific_apps.rules)
21010560 - ET WEB_CLIENT Microsoft Whale Intelligent App Gateway ActiveX Buffer Overflow Function call-1 (emerging-web_client.rules)


[///]     Modified active rules:     [///]

 2010553 - ET WEB_SPECIFIC_APPS PHP-Nuke Module Emporium SQL Injection Attempt (emerging-web_specific_apps.rules)
 2010554 - ET DOS Netgear DG632 Web Management Denial Of Service Attempt (emerging-dos.rules)


[+++]      Added non-rule lines:     [+++]

     -> Added to emerging-sid-msg.map (12):
        2010553 || ET WEB_SPECIFIC_APPS PHP-Nuke Module Emporium SQL Injection Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SPECIFIC_APPS/WEB_PHP_Nuke || url,doc.emergingthreats.net/2010553 || url,packetstormsecurity.org/0912-exploits/phpnukeemporium-sql.txt || url,milw0rm.com/exploits/3334
        2010554 || ET DOS Netgear DG632 Web Management Denial Of Service Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/DOS/DOS_Netgear || url,doc.emergingthreats.net/2010554 || cve,2009-2256 || url, securitytracker.com/alerts/2009/Jun/1022403.html
        2010555 || ET WEB_SPECIFIC_APPS Joomla com_joaktree Component treeId Parameter SELECT FROM SQL Injection Attempt || url,secunia.com/advisories/37535/ || bugtraq,37178
        2010556 || ET WEB_SPECIFIC_APPS Joomla com_joaktree Component treeId Parameter DELETE FROM SQL Injection Attempt || url,secunia.com/advisories/37535/ || bugtraq,37178
        2010557 || ET WEB_SPECIFIC_APPS Joomla com_joaktree Component treeId Parameter UNION SELECT SQL Injection Attempt || url,secunia.com/advisories/37535/ || bugtraq,37178
        2010558 || ET WEB_SPECIFIC_APPS Joomla com_joaktree Component treeId Parameter INSERT INTO SQL Injection Attempt || url,secunia.com/advisories/37535/ || bugtraq,37178
        2010559 || ET WEB_SPECIFIC_APPS Joomla com_joaktree Component treeId Parameter UPDATE SET SQL Injection Attempt || url,secunia.com/advisories/37535/ || bugtraq,37178
        2010561 || ET WEB_CLIENT Microsoft Whale Intelligent App Gateway ActiveX Buffer Overflow Function call-2 || url,www.kb.cert.org/vuls/id/789121 || url,dev.metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/windows/browser/mswhale_checkforupdates.rb
        2010562 || ET WEB_CLIENT Microsoft Whale Intelligent Application Gateway ActiveX Buffer Overflow-1 || url,www.kb.cert.org/vuls/id/789121 || url,dev.metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/windows/browser/mswhale_checkforupdates.rb
        2010563 || ET WEB_CLIENT Microsoft Whale Intelligent Application Gateway ActiveX Buffer Overflow-2 || url,www.kb.cert.org/vuls/id/789121 || url,dev.metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/windows/browser/mswhale_checkforupdates.rb
        2010564 || ET WEB_SPECIFIC_APPS Sisplet CMS komentar.php site_path Parameter Remote File Inclusion Attempt || bugtraq,23334
        21010560 || ET WEB_CLIENT Microsoft Whale Intelligent App Gateway ActiveX Buffer Overflow Function call-1 || url,www.kb.cert.org/vuls/id/789121 || url,dev.metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/windows/browser/mswhale_checkforupdates.rb

     -> Added to emerging-sid-msg.map.txt (12):
        2010553 || ET WEB_SPECIFIC_APPS PHP-Nuke Module Emporium SQL Injection Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SPECIFIC_APPS/WEB_PHP_Nuke || url,doc.emergingthreats.net/2010553 || url,packetstormsecurity.org/0912-exploits/phpnukeemporium-sql.txt || url,milw0rm.com/exploits/3334
        2010554 || ET DOS Netgear DG632 Web Management Denial Of Service Attempt || url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/DOS/DOS_Netgear || url,doc.emergingthreats.net/2010554 || cve,2009-2256 || url, securitytracker.com/alerts/2009/Jun/1022403.html
        2010555 || ET WEB_SPECIFIC_APPS Joomla com_joaktree Component treeId Parameter SELECT FROM SQL Injection Attempt || url,secunia.com/advisories/37535/ || bugtraq,37178
        2010556 || ET WEB_SPECIFIC_APPS Joomla com_joaktree Component treeId Parameter DELETE FROM SQL Injection Attempt || url,secunia.com/advisories/37535/ || bugtraq,37178
        2010557 || ET WEB_SPECIFIC_APPS Joomla com_joaktree Component treeId Parameter UNION SELECT SQL Injection Attempt || url,secunia.com/advisories/37535/ || bugtraq,37178
        2010558 || ET WEB_SPECIFIC_APPS Joomla com_joaktree Component treeId Parameter INSERT INTO SQL Injection Attempt || url,secunia.com/advisories/37535/ || bugtraq,37178
        2010559 || ET WEB_SPECIFIC_APPS Joomla com_joaktree Component treeId Parameter UPDATE SET SQL Injection Attempt || url,secunia.com/advisories/37535/ || bugtraq,37178
        2010561 || ET WEB_CLIENT Microsoft Whale Intelligent App Gateway ActiveX Buffer Overflow Function call-2 || url,www.kb.cert.org/vuls/id/789121 || url,dev.metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/windows/browser/mswhale_checkforupdates.rb
        2010562 || ET WEB_CLIENT Microsoft Whale Intelligent Application Gateway ActiveX Buffer Overflow-1 || url,www.kb.cert.org/vuls/id/789121 || url,dev.metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/windows/browser/mswhale_checkforupdates.rb
        2010563 || ET WEB_CLIENT Microsoft Whale Intelligent Application Gateway ActiveX Buffer Overflow-2 || url,www.kb.cert.org/vuls/id/789121 || url,dev.metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/windows/browser/mswhale_checkforupdates.rb
        2010564 || ET WEB_SPECIFIC_APPS Sisplet CMS komentar.php site_path Parameter Remote File Inclusion Attempt || bugtraq,23334
        21010560 || ET WEB_CLIENT Microsoft Whale Intelligent App Gateway ActiveX Buffer Overflow Function call-1 || url,www.kb.cert.org/vuls/id/789121 || url,dev.metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/windows/browser/mswhale_checkforupdates.rb

[---]     Removed non-rule lines:    [---]

     -> Removed from emerging-sid-msg.map (2):
        2010553 || ET WEB_SPECIFIC_APPS PHP-Nuke Module Emporium SQL Injection Attempt || url,packetstormsecurity.org/0912-exploits/phpnukeemporium-sql.txt || url,milw0rm.com/exploits/3334
        2010554 || ET DOS Netgear DG632 Web Management Denial Of Service Attempt || cve,2009-2256 || url, securitytracker.com/alerts/2009/Jun/1022403.html

     -> Removed from emerging-sid-msg.map.txt (2):
        2010553 || ET WEB_SPECIFIC_APPS PHP-Nuke Module Emporium SQL Injection Attempt || url,packetstormsecurity.org/0912-exploits/phpnukeemporium-sql.txt || url,milw0rm.com/exploits/3334
        2010554 || ET DOS Netgear DG632 Web Management Denial Of Service Attempt || cve,2009-2256 || url, securitytracker.com/alerts/2009/Jun/1022403.html



More information about the Emerging-updates mailing list