Sourcefire VRT Update

Date: 2007-04-17

This is the complete list of rules modified and added in the Sourcefire VRT Certified rule pack.

The format of the file is:

sid - Message (rule group)

Updated rules:
10514 <-> NETBIOS SMB-DS dns unicode little endian alter context attempt (netbios.rules)
10515 <-> NETBIOS SMB-DS dns alter context attempt (netbios.rules)
10516 <-> NETBIOS SMB-DS dns WriteAndX alter context attempt (netbios.rules)
10517 <-> NETBIOS SMB-DS dns little endian alter context attempt (netbios.rules)
10518 <-> NETBIOS SMB-DS v4 dns R_DnssrvEnumRecords WriteAndX little endian andx overflow attempt (netbios.rules)
10519 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords WriteAndX andx overflow attempt (netbios.rules)
10520 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords andx overflow attempt (netbios.rules)
10521 <-> NETBIOS SMB-DS v4 dns R_DnssrvEnumRecords unicode little endian andx overflow attempt (netbios.rules)
10522 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords WriteAndX little endian andx overflow attempt (netbios.rules)
10523 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords WriteAndX unicode little endian andx overflow attempt (netbios.rules)
10529 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 WriteAndX andx object call overflow attempt (netbios.rules)
10530 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 WriteAndX unicode andx object call overflow attempt (netbios.rules)
10531 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 WriteAndX unicode object call overflow attempt (netbios.rules)
10536 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 WriteAndX little endian overflow attempt (netbios.rules)
10537 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 WriteAndX object call overflow attempt (netbios.rules)
10542 <-> NETBIOS SMB-DS v4 dns R_DnssrvUpdateRecord2 WriteAndX little endian overflow attempt (netbios.rules)
10545 <-> NETBIOS SMB-DS v4 dns R_DnssrvUpdateRecord2 overflow attempt (netbios.rules)
10550 <-> NETBIOS DCERPC DIRECT v4 dns R_DnssrvUpdateRecord2 overflow attempt (netbios.rules)
10552 <-> NETBIOS SMB-DS v4 dns R_DnssrvUpdateRecord2 WriteAndX andx overflow attempt (netbios.rules)
10555 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 WriteAndX unicode little endian object call overflow attempt (netbios.rules)
10558 <-> NETBIOS DCERPC DIRECT dns R_DnssrvUpdateRecord2 object call overflow attempt (netbios.rules)
10560 <-> NETBIOS DCERPC DIRECT dns R_DnssrvUpdateRecord2 little endian object call overflow attempt (netbios.rules)
10566 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 unicode little endian andx overflow attempt (netbios.rules)
10568 <-> NETBIOS SMB-DS v4 dns R_DnssrvUpdateRecord2 unicode little endian andx overflow attempt (netbios.rules)
10572 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 WriteAndX little endian andx overflow attempt (netbios.rules)
10573 <-> NETBIOS DCERPC DIRECT v4 dns R_DnssrvUpdateRecord2 little endian overflow attempt (netbios.rules)
10574 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 WriteAndX unicode andx overflow attempt (netbios.rules)
10577 <-> NETBIOS SMB-DS v4 dns R_DnssrvUpdateRecord2 WriteAndX unicode little endian andx overflow attempt (netbios.rules)
10580 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 WriteAndX overflow attempt (netbios.rules)
10581 <-> NETBIOS SMB-DS v4 dns R_DnssrvUpdateRecord2 WriteAndX unicode little endian overflow attempt (netbios.rules)
10586 <-> NETBIOS SMB-DS v4 dns R_DnssrvUpdateRecord2 unicode overflow attempt (netbios.rules)
10587 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 unicode little endian overflow attempt (netbios.rules)
10589 <-> NETBIOS SMB-DS v4 dns R_DnssrvUpdateRecord2 WriteAndX overflow attempt (netbios.rules)
10592 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 little endian overflow attempt (netbios.rules)
10601 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 unicode andx object call overflow attempt (netbios.rules)
10602 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 WriteAndX little endian andx object call overflow attempt (netbios.rules)
10603 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 WriteAndX little endian object call overflow attempt (netbios.rules)
10608 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 overflow attempt (netbios.rules)
10609 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 unicode object call overflow attempt (netbios.rules)
10614 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 object call overflow attempt (netbios.rules)
10617 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 WriteAndX unicode little endian overflow attempt (netbios.rules)
10622 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 little endian andx overflow attempt (netbios.rules)
10624 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 unicode little endian andx object call overflow attempt (netbios.rules)
10627 <-> NETBIOS SMB-DS v4 dns R_DnssrvUpdateRecord2 unicode little endian overflow attempt (netbios.rules)
10630 <-> NETBIOS DCERPC DIRECT dns R_DnssrvUpdateRecord2 little endian overflow attempt (netbios.rules)
10632 <-> NETBIOS DCERPC DIRECT dns R_DnssrvUpdateRecord2 overflow attempt (netbios.rules)
10638 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 andx overflow attempt (netbios.rules)
10640 <-> NETBIOS SMB-DS v4 dns R_DnssrvUpdateRecord2 WriteAndX little endian andx overflow attempt (netbios.rules)
10644 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 unicode andx overflow attempt (netbios.rules)
10645 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 WriteAndX unicode little endian andx object call overflow attempt (netbios.rules)
10646 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 WriteAndX andx overflow attempt (netbios.rules)
10649 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 little endian andx object call overflow attempt (netbios.rules)
10652 <-> NETBIOS SMB-DS v4 dns R_DnssrvUpdateRecord2 little endian overflow attempt (netbios.rules)
10653 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 little endian object call overflow attempt (netbios.rules)
10658 <-> NETBIOS SMB-DS v4 dns R_DnssrvUpdateRecord2 WriteAndX unicode overflow attempt (netbios.rules)
10659 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 unicode overflow attempt (netbios.rules)
10661 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 unicode little endian object call overflow attempt (netbios.rules)
10664 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 WriteAndX unicode overflow attempt (netbios.rules)
10669 <-> NETBIOS SMB-DS v4 dns R_DnssrvUpdateRecord2 unicode andx overflow attempt (netbios.rules)
10672 <-> NETBIOS SMB-DS v4 dns R_DnssrvUpdateRecord2 little endian andx overflow attempt (netbios.rules)
10679 <-> NETBIOS SMB-DS v4 dns R_DnssrvUpdateRecord2 WriteAndX unicode andx overflow attempt (netbios.rules)
10686 <-> NETBIOS SMB-DS v4 dns R_DnssrvUpdateRecord2 andx overflow attempt (netbios.rules)
10688 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 andx object call overflow attempt (netbios.rules)
10690 <-> NETBIOS SMB-DS dns R_DnssrvUpdateRecord2 WriteAndX unicode little endian andx overflow attempt (netbios.rules)
10699 <-> NETBIOS SMB-DS dns unicode alter context attempt (netbios.rules)
10700 <-> NETBIOS SMB-DS dns unicode andx bind attempt (netbios.rules)
10702 <-> NETBIOS SMB-DS dns unicode bind attempt (netbios.rules)
10708 <-> NETBIOS SMB-DS dns unicode andx alter context attempt (netbios.rules)
10714 <-> NETBIOS SMB-DS dns unicode little endian andx bind attempt (netbios.rules)
10715 <-> NETBIOS SMB-DS dns unicode little endian bind attempt (netbios.rules)
10716 <-> NETBIOS DCERPC DIRECT dns little endian alter context attempt (netbios.rules)
10717 <-> NETBIOS SMB-DS dns unicode little endian andx alter context attempt (netbios.rules)
10726 <-> NETBIOS SMB-DS dns WriteAndX little endian andx alter context attempt (netbios.rules)
10727 <-> NETBIOS SMB-DS dns WriteAndX little endian alter context attempt (netbios.rules)
10728 <-> NETBIOS SMB-DS dns WriteAndX little endian andx bind attempt (netbios.rules)
10729 <-> NETBIOS SMB-DS dns WriteAndX little endian bind attempt (netbios.rules)
10738 <-> NETBIOS SMB-DS dns little endian andx bind attempt (netbios.rules)
10739 <-> NETBIOS SMB-DS dns little endian bind attempt (netbios.rules)
10740 <-> NETBIOS DCERPC DIRECT dns bind attempt (netbios.rules)
10741 <-> NETBIOS SMB-DS dns little endian andx alter context attempt (netbios.rules)
10747 <-> NETBIOS SMB-DS dns WriteAndX unicode little endian alter context attempt (netbios.rules)
10748 <-> NETBIOS SMB-DS dns WriteAndX unicode little endian andx bind attempt (netbios.rules)
10750 <-> NETBIOS SMB-DS dns WriteAndX unicode little endian bind attempt (netbios.rules)
10756 <-> NETBIOS SMB-DS dns WriteAndX unicode little endian andx alter context attempt (netbios.rules)
10762 <-> NETBIOS SMB-DS dns andx bind attempt (netbios.rules)
10763 <-> NETBIOS SMB-DS dns bind attempt (netbios.rules)
10764 <-> NETBIOS DCERPC DIRECT dns alter context attempt (netbios.rules)
10765 <-> NETBIOS SMB-DS dns WriteAndX andx alter context attempt (netbios.rules)
10774 <-> NETBIOS SMB-DS dns WriteAndX unicode andx alter context attempt (netbios.rules)
10775 <-> NETBIOS SMB-DS dns WriteAndX unicode alter context attempt (netbios.rules)
10776 <-> NETBIOS SMB-DS dns WriteAndX unicode andx bind attempt (netbios.rules)
10777 <-> NETBIOS SMB-DS dns WriteAndX unicode bind attempt (netbios.rules)
10786 <-> NETBIOS SMB-DS dns WriteAndX andx bind attempt (netbios.rules)
10787 <-> NETBIOS SMB-DS dns WriteAndX bind attempt (netbios.rules)
10788 <-> NETBIOS DCERPC DIRECT dns little endian bind attempt (netbios.rules)
10789 <-> NETBIOS SMB-DS dns andx alter context attempt (netbios.rules)
10810 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords WriteAndX little endian andx object call overflow attempt (netbios.rules)
10812 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords WriteAndX unicode andx object call overflow attempt (netbios.rules)
10815 <-> NETBIOS DCERPC DIRECT dns R_DnssrvEnumRecords overflow attempt (netbios.rules)
10823 <-> NETBIOS DCERPC DIRECT dns R_DnssrvEnumRecords little endian object call overflow attempt (netbios.rules)
10825 <-> NETBIOS SMB-DS v4 dns R_DnssrvEnumRecords WriteAndX little endian overflow attempt (netbios.rules)
10826 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords WriteAndX object call overflow attempt (netbios.rules)
10827 <-> NETBIOS SMB-DS v4 dns R_DnssrvEnumRecords WriteAndX unicode little endian andx overflow attempt (netbios.rules)
10828 <-> NETBIOS SMB-DS v4 dns R_DnssrvEnumRecords WriteAndX overflow attempt (netbios.rules)
10829 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords little endian overflow attempt (netbios.rules)
10837 <-> NETBIOS SMB-DS v4 dns R_DnssrvEnumRecords WriteAndX unicode little endian overflow attempt (netbios.rules)
10839 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords WriteAndX little endian object call overflow attempt (netbios.rules)
10847 <-> NETBIOS SMB-DS v4 dns R_DnssrvEnumRecords WriteAndX andx overflow attempt (netbios.rules)
10851 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords unicode andx object call overflow attempt (netbios.rules)
10853 <-> NETBIOS DCERPC DIRECT v4 dns R_DnssrvEnumRecords little endian overflow attempt (netbios.rules)
10854 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords andx object call overflow attempt (netbios.rules)
10859 <-> NETBIOS DCERPC DIRECT dns R_DnssrvEnumRecords object call overflow attempt (netbios.rules)
10864 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords unicode little endian overflow attempt (netbios.rules)
10866 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords object call overflow attempt (netbios.rules)
10874 <-> NETBIOS SMB-DS v4 dns R_DnssrvEnumRecords little endian andx overflow attempt (netbios.rules)
10876 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords WriteAndX overflow attempt (netbios.rules)
10877 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords little endian object call overflow attempt (netbios.rules)
10878 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords unicode little endian andx overflow attempt (netbios.rules)
10879 <-> NETBIOS SMB-DS v4 dns R_DnssrvEnumRecords little endian overflow attempt (netbios.rules)
10880 <-> NETBIOS SMB-DS v4 dns R_DnssrvEnumRecords overflow attempt (netbios.rules)
10882 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords WriteAndX unicode little endian andx object call overflow attempt (netbios.rules)
10884 <-> NETBIOS SMB-DS v4 dns R_DnssrvEnumRecords andx overflow attempt (netbios.rules)
10887 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords little endian andx object call overflow attempt (netbios.rules)
10895 <-> NETBIOS DCERPC DIRECT dns R_DnssrvEnumRecords little endian overflow attempt (netbios.rules)
10897 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords overflow attempt (netbios.rules)
10898 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords WriteAndX unicode object call overflow attempt (netbios.rules)
10899 <-> NETBIOS SMB-DS v4 dns R_DnssrvEnumRecords WriteAndX unicode andx overflow attempt (netbios.rules)
10900 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords WriteAndX unicode overflow attempt (netbios.rules)
10901 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords WriteAndX unicode little endian overflow attempt (netbios.rules)
10909 <-> NETBIOS SMB-DS v4 dns R_DnssrvEnumRecords WriteAndX unicode overflow attempt (netbios.rules)
10911 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords unicode little endian object call overflow attempt (netbios.rules)
10919 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords WriteAndX unicode andx overflow attempt (netbios.rules)
10923 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords little endian andx overflow attempt (netbios.rules)
10925 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords WriteAndX andx object call overflow attempt (netbios.rules)
10926 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords unicode little endian andx object call overflow attempt (netbios.rules)
10931 <-> NETBIOS DCERPC DIRECT v4 dns R_DnssrvEnumRecords overflow attempt (netbios.rules)
10936 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords unicode overflow attempt (netbios.rules)
10938 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords WriteAndX unicode little endian object call overflow attempt (netbios.rules)
10946 <-> NETBIOS SMB-DS v4 dns R_DnssrvEnumRecords unicode andx overflow attempt (netbios.rules)
10948 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords WriteAndX little endian overflow attempt (netbios.rules)
10949 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords unicode object call overflow attempt (netbios.rules)
10950 <-> NETBIOS SMB-DS dns R_DnssrvEnumRecords unicode andx overflow attempt (netbios.rules)
10951 <-> NETBIOS SMB-DS v4 dns R_DnssrvEnumRecords unicode overflow attempt (netbios.rules)
10952 <-> NETBIOS SMB-DS v4 dns R_DnssrvEnumRecords unicode little endian overflow attempt (netbios.rules)