Symantec Endpoint Protection - Security Update 1

April 25, 2007
Symantec Endpoint Protection - Security Update 1

Description

Use the LiveUpdate feature of Symantec Endpoint Protection to download the security update.

Security Update 1 adds coverage for the following vulnerabilities and threats:

Adlogix SetupFile Request
OS X Apple File Print Remote BO
AOL IM External App Request BO
AOL IM Game Request BO
AOL IM Message Received
AOL IM Message Sent
AOL IM AwayMsg BO
AOL IM Login
HTTP Apropos Ad Activity
ArcServe Discovery SERVICEPC BO
IRC JOIN Command
IRC NICK Command
IRC Notice Command
IRC Notice DCC Chat Command
IRC Notice DCC Send Command
IRC Private Message Command
IRC DCC Private Message Chat Cmd
IRC Private Message DCC Send Cmd
IRC USER Command
HTTP Avres Activity
BargainBuddy Installation Activity
BD Acid Battery
BD Alvgus
BD Amanda
BD AOL Admin
BD Asylum
BD Backage 3.1.1
BD BackConstruction 1.2
BD BackConstruction 1.5
BD BackConstruction 2.1
BD BackConstruction 2.5
BD Backdoor 2.0.1
BD Backdoor 2.0.2
BD BackOrifice Activity
BD BackOrifice 2000 Activity
BD BackOrifice 2000 UDP Activity
BD Balsitix
BD Basic Hell 1.0
BD BDDT
BD Bigorna 1.0
BD BioNet 4.00.03 BE S
BD Blaaaaa 2.0
BD Black Angel 1.3
BD Blade Runner 0.80a
BD Blazer5
BD Breach 4.5
BD Breach Pro
HTTP BD BugBear
BD Bugs
BD Buschtrommel 1.0
BD Buttman 0.9
BD B.F Evolution
BD CAFEiN 0.8
BD CDK
BD Celine
BD Cero b1
BD CGI BioNet 0.84
BD CGI BioNet 2.6.1a
BD Chupacabra
Backdoor C.I.A
BD Connection
BD Crack Down 1.0
BD Crazzynet
BD Cyn 1.0.1
BD Danton 1.2
BD Dark Connection 1.2
BD DeltaSource 0.7
BD DFch 1b1
BD Digital Rootbeer
BD Dolly 1.5
BD Dolly 1.6
BD Dolly 1.7
BD Dolly 2.0
BD Donald Dick 1.52
BD Drat 1.0
BD DTR 1.4.2
BD Duddie
BD Duddie 2.0
BD Duddie 3.1
BD Duddie 3.2
BD Eclypse 1.0
BD Executor
BD Exploiter 1.0
BD File Nail
BD Forced Entry 1.1
BD Fore 1.0
BD Frenzy 1.0.1
BD Frenzy 2000 3.0
BD F-Backdoor 0.8
BD Gate Crasher 1.2
BD Ghost 2.2
BD Gift 2.5
BD GirlFriend 1.3
BD Glacier 2.2
BD Guptachar
BD G-Spot Tight 1.5
BD Hackers World 2.0.3
BD Hack-A-Tack
BD Hellz Addiction 1.20e
BD Host Control 2.5
BD Hydroleak
BD IIlusion 1.0
BD InCommand 1.0
BD Infector 1.0
BD Infector 1.4
BD Infra Trojan
BD Insane 4.0
BD Insane 5.0
BD Internalrevise 1.0
BD Intruder 1.0
BD Intruzzo
BD Kid Terror 1.0
BD Konik 0.6b
BD Kuang 2.0
BD Last 2000
BD Latinus 1.0
BD Latinus 1.2
BD Latinus 1.3
BD Latinus 1.4
BD Leszcz 5.5
BD Le Guardien 1.0
BD Lithium 1.0
BD M2 Trojan 1.25
BD Mantis 1.0
BD Massaker 1.0
BD Masters of Paradise
BD Mavericks Matrix 1.0
BD Meet the Lamer 1.0
BD Michal 5.00
BD Microspy 1.0
BD Millenium 1.0
BD Mini Asylum 1.1
BD Mini Oblivion 0.1
BD MNEAH Trojan 1.0
BD Moon Pie 1.0
BD Moon Pie 3.0
BD Mosucker 1.0
BD Mosuck 2.0
Backdoor MoSucker 3.0
BD Mosuck 1.1
BD NetBus Activity
BD NetBus Pro 2.0
BD Netcontroller
BD NetSphere 1.27
BD NetTaxi 1.8
BD NetTrash 1.0
BD NetTrash 1.01
BD Network Terrorist 1.31
BD Net Administrator 1.0
BD Net Devil 1.0
BD Net Metropolitan 1.0
BD Net Metropolitan 1.04
BD Net Raider 0.0
BD Net Spy 2.0
BD New Silencer
BD Nirvana 1.94
BD Nirvana 1.95
BD Nirvana 1.99
BD NokNok 5.0
BD NokNok 6.0
BD NokNok 7.0
BD NoSecure 1.2
MyDoom A Worm Code Execution
MyDoom A Worm Proxy
BD Oblivion 0.1
BD Osiris 2.0
BD One 0.1
BD OOTLT
BD Optix Pro 1.0
BD Oxon 1.1
BD PC Invader 0.5
BD PC Invader 1.0
BD Peacomm Trojan
BD Pest 1.0
BD Phase Zero 1.0
BD Phoenix 1.28
BD Pitfall
BD Pitfall Surprise
BD Prayer 1.2
BD Priority
BD Private Port 1.0
BD Progenic Trojan 1.0
BD Project Next 0.5.3
BD Prosiak 0.47
BD Prosiak 0.65
BD Psychward
BD Psychward 1.0
BD Qwertos RAT 0.2
BD R0xr4t 1.0
BD R3C
BD RatHead 2.01
BD Remote Boot Tool 1.0
BD Remote Explorer 1.0
BD Remote Hack 1.2
BD Remote Hack 1.3
BD Remote Process Monitor 1.0
BD Remote Revise 1.0
BD Remote Revise 1.15
BD Remote Revise 1.5
BD Revenger 1.0
BD Ripperz Controller 1.1
BD Ruler 1.41
BD RUX the Tick 4.0
BD Satan 2.0
BD Scarab 1.2
BD SchneckenKorn
BD School Bus 1.6
BD Tcc Trojan 0.90
BD The Flu
BD The Unexplained 1.0
BD Thing 1.1
BD Thing 1.6
BD TransScout 1.1
BD Trojan Cow 1.0
BD Trojan Spirit 2001 1.2
BD Tron
BD Truva 1.2
BD Ullysse
BD Ultimate RAT 1.0
BD Ultors
BD Undetected 2.3 SE
BD Undetected 3.3
BD Uploader
BD Vagr Nocker 1.2
BD Vampire 1.2
BD Voodoo Doll
MyDoom F Backdoor Worm Detection
BD War Trojan
BD Webservect 1.0
BD WinCrash 1.03
BD WinCrash 2.0
BD Windows Mite 1.0
BD WinRAT 1.0
BD WinRAT 1.2
BD Wow 23 0.3
BD Xanadu 1.0
BD Xanadu 1.11
BD Xlog 2.2
Backdoor X ZT00 ver 1.0
BD Y3K RAT 1.1
BD Y3K RAT 1.6
BD YAT 2.1
BD YAT 3.01
W32 Beagle A Worm Backdoor
W32 Beagle B Worm Backdoor
Begin2Search Activity
BFTP SITE CHOWN BO (1)
BFTP SITE CHOWN BO (2)
DNS NXT BO
BlazeFind SetupFile Request
P2P Blubster Download Setup
HTTP BookedSpace Activity
BookedSpace Downloading Files
BroadcastPC InstallFile Request
BugBear B Worm SMTP Propagation
BugBear B Worm FileShare Propagation
Computer Associates License GCR BO
Computer Associates License GetConfig BO
HTTP Cisco 2GB Integer Overflow
Clearsearch ControlInfo Transfer
Clearsearch InstallFiles Request
Clearsearch Ping Request
HTTP CoolWebSearch Activity
CWSIEFEATS Data Transfer
DAP Daptest Activity
DDOS Trin00 MasterDaemon Default PW
DDOS Trin00 MasterRemote Int PW
Deloder Worm Infection
DNS Tsig BO (1)
DNS Tsig BO (2)
Snork DoS
Dumaru Worm Propagation
E2Give AppID Registry Subkey
Ebates Moemoney Popup Activity
Ebates Moemoney Tracking Activity
eIQnetworks Enterprise Security BO
EMC Retrospect Client Buffer Overflow
Emule File Traffic Detected
P2P eMule Hello
Envolo AutoUpdate Activity
Envolo Installation Activity
Favoriteman Activity
Fizzer Worm Propagation (TCP)
Fizzer Worm Propagation (UDP)
Fizzer Worm SMTP Propagation
HTTP FormMail Cmd Exec
FTP AIX Remote BO
FTP CreateDirectory BO (1)
FTP CreateDirectory BO (2)
FTP MS IIS Status DoS
FTP MKD Stack Overflow
FTP MSIE Response Buffer Overflow
GameSpyArcade Requesting StatInfo
Gamespyarcade Version Check
Gaobot Autostart and Service Commands
Gaobot Bot Logout Command
Gaobot Generic Bot Commands
Gaobot Variable Config Commands
Gaobot DDOS commands
Gaobot Harvest Mail and Keys Command
Phatbot OS Shutdown Commands
Gaobot P2P Client Hello
Gaobot P2P Listener Hello
Phatbot Process Control Commands
Gaobot Redirect Commands
Phatbot Scan Commands
GAIN Communication
GAIN Website Visit Data Request
GAIN New Code Info Request
GAIN Reporting Typed URL
GAIN Reporting Typed URL (2)
Gator Request
GAIN Web Cookie
HTTP GIF Netscape Ext. Malformed Heap BO
P2P Gnutella Bearshare Connection
P2P Gnutella Connection
P2P Gnutella File Request
P2P Gnutella Morpheus Connection
Goidr DNS Request
Google Desktop Search Remote XSS
Google Toolbar About.HTML HTML Injection
MS Windows H.323 BO (1)
MS Windows H.323 BO (2)
Helpexpress SetupFile Request
HP OpenView Remote Command Exec
HTTP Htgrep CGI File Access
HTML WinHelp Item BO
007SPY Install Request
2020Search Configuration Request
2020Search Info. Upload Request
2020Search Installation File Request
HTTP 2Search Activity
7FASST Search Activity
7FASST User Tracking Activity
HTTP ABXToolbar Activity
HTTP Acer LunchApp Unsafe Method
HTTP MS ACF Parsing Code Exec
HTTP Acrobat ActiveX Ctrl URI Req BO
ActiveSearch Search Activity
Adbars Install Request
Adbars Search Activity
HTTP Adblaster Activity
Adblock Install Download
Adblock Redirect Activity
Adblock Update Activity
HTTP Adgoblin Activity
HTTP Adlogix Activity
HTTP Adobe Acrobat Plugin XSS
HTTP Adobe AcroPDF BO
Adroar Install Request
Adroar Update Activity
HTTP AdultLinks Activity
Adultlinks Install Request
AdDestroyer Activity
HTTP Akamai Download Manager BO
Alexa User Info Tracking
Alexa Installation Request
HTTP AltaVista DirTraversal
HTTP Anaconda Directory Traversal
HTTP ANI File Anih Hdr Size BO
HTTP Quicktime RTSP URI BO
HTTP Apropos Installation Activity
HTTP WMP ASF File Parsing Code Exec.
HTTP ASP.NET App Folder Info. Disc.
HTTP MS IIS ASP DataSuffix Request
HTTP BadBlue MFCISAPI Cmd BO
BargainBuddy Adv Activity
HTTP BBSee Activity
HTTP bdir.htr Path Disclosure
HTTP BINET Download Request
HTTP BetterInternet Info Upload
HTTP BetterInternet Install Activity
HTTP MS BizTalk DTA RemoteExec
HTTP Adware Bonzi Activity
HTTP Cart32 Remote Admin PW
HTTP CasinoClient Install Request
HTTP Request Direct Perl Probe
HTTP Chunked Encoding Negative Length BO
HTTP Cisco VoIP DoS
HTTP ClearX Activity
HTTP ClickAlchemy Activity
HTTP Cobalt Raq Apache Disclosure
HTTP Cobalt RAQ Service.cgi BO
HTTP ColdFusion CFM Disclosure
HTTP CF GetTempDirectory Attempt
CometCursor Cursor Download
CometCursor Logging Information
CometCursor Plus Download
HTTP CommonName Activity
HTTP MS MediaPlayer Skin File Code Exec
HTTP TIF Folder Info. Disclosure
HTTP CoolWebSearch Activity 2
HTTP Crystal Rpts Form Viewer Traversal
HTTP CSS Domain/Zone Info Disclosure
HTTP CWSAlfaSearch Update Activity
Cydoor Media Files Request
HTTP Daosearch Activity
HTTP Dealhelper Downloading Data
HTTP Delfin Activity
Delfin Ads Request
Delfin Definition File Request
HTTP MS IE DHTML Edit Ctrl Attack
HTTP DialPlatform Activity
HTTP DirectAnim ComObj CodeExec (CLSID)
HTTP DirectAnim ComObj CodeExec (PROGID)
HTTP DirectAnimation KeyFrame Heap BO
HTTP DirectAnimation Spline Heap BO
HTTP Director Download Activity
HTTP DollarRevenue Download Activity
Dotcomtoolbar Installation Files Request
HTTP DownloadPlus Activity
E2Give InstallFile Request
HTTP EasySearch Activity
HTTP EasyWWW Install File Request
Elitebar Control Information Activity
Elitebar Update Activity
HTTP EnhanceMSearch Activity
Euniverse FlowGoBar Config Request
Euniverse Flowgo Ping Request
Euniverse KeenValue Info Transfer
Euniverse Keenvalue PopUp Request
Euniverse Thunderdownload Activity
Euniverse Thunderdownload Installation
HTTP Excel MSO Remote Code Exec
HTTP Excel Multiple Remote Code Exec.
HTTP Excel Multiple Remote Code Exec (2)
HTTP Excel ShockWave Obj Flash JS Exec
HTTP Eziin Activity
HTTP EZSearch Activity
HTTP Ezula Activity
Ezula Upgrade and Version Check
HTTP FastFind Activity
HTTP FastSeek Download Activity
HTTP Hylafax Faxsurvey Remote PW Access
HTTP FindemNow Activity
HTTP Firefox DOM Override Code Exec
Firefox Favicon Link Tag Code Exec
HTTP Mozilla Firefox IFRAME Handling DoS
HTTP Firefox Unauth Clipboard Disc
HTTP Firefox PLUGINSPAGE Remote Exec
HTTP Firefox SVG Mem Corrupt Code Exec
HTTP FIZZLE Config Request
HTTP FlashEnhancer Activity
HTTP MS FrontPage dvwssr.dll Request
HTTP MS FrontPage Remote Debug BO
HTTP MS FrontPage SmartHTML DoS
HTTP FrontPage PWD Service Access
HTTP FreeScratchWin Activity
HTTP MS FrontPage Server Ext. XSS
HTTP GDI Remote Code Exec
HTTP Getup Activity
HTTP GreenIo Activity
Hotbar Cookie Detected
Hotbar Info Transfer For PopUp Ads
Hotbar Installation & Upgrade Activity
Hotbar Reports Activity
Hotbar PopUp Ads Request
Hotbar Temp & Toolbar Disp Activity
Hotbar Updates Activity
HTTP htdig File Disclosure
HTML Domain Name BO (PoC)
HTML Domain Name BO (Milw0rm Exploit)
HTTP ICcontrol Activity
ICQ Guestbook DoS Long Name
HTTP MS IE CHM Cross-Domain Redirect
HTTP Iebar Activity
HTTP IEHlpr CCNNLC Update Activity
HTTP IEHlpr Info Download Activity
HTTP IEHlpr Register Activity
HTTP IEHlpr SmartAllyes Update Activity
IEPlugin Activity
HTTP MS IE msdds.dll Code Exec
HTTP MS IE ADODB Stream SavetoFile
MSIE FTP URI Arbitrary Cmd Exec
HTTP MS IE Help CTRL Local Zone Bypass
HTTP MS IE HHCtrl ActiveX XDom Scripting
HTML HR Align BO
HTTP MSIE JavaScript OnLoad Rte CodeExec
HTTP MSIE Multiple Style Tags Code Exec
HTTP MS IFRAME JOB Share Redirect
HTTP MS IE Malf. IFRAME/EMBED BO
HTTP IIS %2E DoS
HTTP MS IIS Showcode ASP Request
HTTP MS IIS Newdsn CGI Request
HTTP IIS CMDExecution Access (1)
HTTP IIS HTR ISAPI BO
HTTP IIS ISAPI Enumeration
HTTP IIS ISAPI Printer BO
HTTP MS IIS SQL Hit Disclosure
HTTP IIS Webdav Exploit
HTTP IIS WebDAV PROPFIND Overflow
HTTP IIS Welchia WebDAV SEARCH BO (1)
HTTP IIS Welchia WebDAV SEARCH BO (2)
Instafinder Requesting Configuration
Instafinder Reporting Mistyped URL
HTTP InstantAccess Activity
HTTP Instdollars Activity
HTTP ISM DLL Remote Administration
HTTP MS JET DB Engine DSN Hack
HTTP JJ Sample CGI Cmd Exec
Kazaa Sig2Dat Protocol Code Exec
HTTP Kuaiso Activity
HTTP Lantend Activity
HTTP Unsafe COM Objects Instantiation
HTTP Look2me Activity
HTTP LOP Toolbar Activity
LOP Toolbar Update
HTTP LoveFreeGames Activity
HTTP Macromedia JRun Dotcfm File Disc.
HTTP Margoc Activity
HTTP MatrixSearch Activity
HTTP MatrixSearch Installation Request
HTTP MS MDAC ADODB Connection Code Exec
HTTP MDAC Component Query BO
HTTP MediaInject Activity
Megasearchbar InstallationFile Request
HTTP MessStopper Activity
HTTP MS IE MIME IFRAME Exec
HTTP MoneyGainer Download Activity
HTTP MovieMaker ComObj CodeExec (CLSID)
HTTP MovieMaker ComObj CodeExec (PROGID)
HTTP Mozilla InstallVersion CompareTo BO
HTTP Mozilla Regex Heap Corruption
HTTP MS showhelp CHM Download Attempt
HTTP MS Excel Unicode HLINK BO
HTTP MS fpcount BO Attempt
HTTP MSIE Action Script Handler BO
HTTP MSIE Content Type BO
HTTP MSIE CreateTextRange Code Exec
HTTP MSIE Generic Browser Exploit
HTTP MSIE IsComponentInstalled BO
HTTP MSIE ITS Protocol Zone Bypass
HTTP MSIE MHTML URI BO
HTTP MS IE VML Fill Method BO
HTTP MSIE VML RecolorInfo Code Exec
HTTP Microsoft Agent Remote Code Exec
HTTP MS Frontpage Image Mapper BO
HTTP MS IE DHTML AnchorClick Partial DoS
HTTP MS IE GetObject File Disclosure
HTTP MS IE MData Foreign Domain Spoofing
HTTP MS IE MMS Proto Hndlr Cmd Injection
HTTP MS IE MSHTML.DLL CSS Handling BO
HTTP MS IE Style Tag Cmt Mem Corruption
HTTP MS Int. Training CBO Parsing BO
HTTP MS Outlook VEVENT Code Exec
HTTP MS OWC Local File Disclosure
MXTarget Information Upload
MyWay Buttons Request
MyWay Configuration Request
HTTP Negative Content Length
NetOptimizer Agent Upload
HTTP Netscape Client Overflow Shellcode
HTTP News Rover Remote Buffer Overflow
HTTP Novell AccessMgr IssueInstat XSS
HTTP Novell CGI Convert Request
HTTP NowFind Activity
HTTP CGI NPH Request
HTTP NullSoft Winamp M3U BO
Offeragent Ad Pop-up Activity
Offeragent Install Request.
HTTP Oracle 9IAS PLSQL BO
HTTP Oracle 9IAS PL/SQL Directory Trav.
HTTP Oracle SOAP Default Config Vuln
HTTP OverPro Activity
HTTP Peacomm Download Activity
HTTP PeerCast Remote Buffer Overflow
HTTP PHPBB URL Decode SQL Injection
HTTP PHP CGI Overflow
HTTP PigSearch Activity
HTTP PortalScan Activity
HTTP PowerSearch Download Activity
HTTP PSN Activity
PurityScan InfoTransfer Activity
PurityScan Installation Activity
PurityScan Notification Activity
HTTP Qoolaid Activity
HTTP Quicktime HREFTrack JavaScript Ref.
HTTP QuickBrowser Activity
HTTP QuickBrowser Install
HTTP RCPrograms Activity
HTTP MDAC RDS Dataspace Rem Code Exec.
HTTP RealPlayer SMIL File Stack BO
HTTP MS RichEdit ObjEmb Code Exec
HTTP Roimoi Activity
HTTP SalesLogix SQL Injection
HTTP SearchBarCash Activity
HTTP SearchNew Activity
SearchPounder Information Request
HTTP SearchSeekFind Activity
HTTP Searchsquire Activity
HTTP SGI InfoSearch fname Exec
ShopAtHome Agent Installation Activity
ShopAtHome Agent Registration
ShopAtHome Bundle Tracking
HTTP Shorty Activity
HTTP SCO Skunkware ViewSrc Traversal
HTTP SmartDove Download Request
HTTP SmartSearch Activity
Infostealer Snifula.B HTTP Activity
180Solutions Configuration Event
180Solutions Requesting Action URL
180Solutions Requesting Ads
180Solutions Requesting Keywords
180Solutions Tracking Events
HTTP StartPage Ifrbiz Activity
HTTP Superbar Activity
HTTP SupportSoft ActiveX Stack Overflow
HTTP SurfAccuracy Config Request
HTTP Surfsidkick Info Upload
HTTP Surfsidkick Popup Activity
HTTP Sygate Policy Mgr SQL Injection
HTTP SystemProcess Activity
HTTP TAFbar Install Request
Tafbar Install File Request
HTTP CGI Test Request
Topantispyware Activity
HTTP TopAV Activity
TopMoxie Requesting Build Files
Topmoxie Recoding Downloads and Offers
HTTP TrustInPopups Activity
HTTP Twaintec Activity
HTTP UCMore Install Request
HTTP Ulubione Activity
HTTP Umaxsearch Activity
Universal Plug and Play Service Overflow
HTTP Vanish Activity
HTTP VB Unsafe Objects Instantiation
HTTP MS Visual Studio RAD Support BO
HTTP VMWare ActiveX Control BO
HTTP W32 Medbot Activity
HTTP Webbar Register Update Activity
HTTP WebDir Activity
HTTP Webext Install Activity
HTTP WEBGais Remote Command Exec
HTTP Webhancer Install Activity
HTTP Webprefix Activity
HTTP WebViewFolderIcon SetSlice BO
WhenU ClockSync WeatherCast Activity
WhenU Installation Activity
WhenU Request For Offers
WhenU SearchBar Sidefinder Activity
WhenU Update Events
HTTP WhileUSurf Activity
HTTP WinAd Activity
HTTP NullSoft Winamp Playlist BO
HTTP Winamp Ultravox Header BO
HTTP WinBo Activity
HTTP MS Media Services BO
HTTP Windupdate Mediapass Install
HTTP Winpup Activity
HTTP Winshow Activity
HTTP Winzip ActiveXControl KillBit
HTTP WKS Lotus 1-2-3 Remote Code Exec
HTTP Wnad Activity
HTTP WorldSearch Activity
HTTP W32 Alcra Activity
HTTP W32.Mixor Worm Activity
HTTP XMLHTTP SetRequestHeader Exec
HTTP Yahoo Voice Chat ActiveX BO
Yahoo Webcam ActiveX Control BO
HTTP Yuupsearch Activity
HTTP Zeropopup Install Request
HTTP Ziocom Activity
HTTP Zlob Activity
HTTP ZQuest Activity
ZSearch Installation File Request
HTTP Zuvio Install Request
HTTP IEDriver Popup Activity
IEFeats Data Transfer
IEPlugin DLL Download Request
HTTP MS IE Install Engine Ctl. Heap BO
HTTP IGetNet Activity
HTTP MS IIS Chunk Encoding Heap BO
HTTP IIS ISAPI Extension (Code Red)
MS IIS PCT SSL Exploit Attempt
AIM ICQ Request (OSCAR)
Jabber IM Client Connection
QQ IM Login Packet
TOC (AOL) IM Usage
Incredifind Redirect Activity
HTTP Info2www CGI Command Exec
IPInsight StubConscorr Activity
IPInsight StubSentry Activity
Azaco Worm Propagation
Claw Worm Propagation
ElSpy Worm Propagation
ElSpy Worm "are_u" Request Response
ElSpy Worm Infection Notification
BackOrifice Speakeasy Trojan Activity
Life Stages Worm Propagation
LOA Worm Propagation
Lucky Worm Propagation
Pr0n Worm Propagation
Septic Worm Infection Notification
IRC Worm Rinbot Activity
ISearch DNS Request
ISearch Mistyped URL Hijack Attempt
ISearch Search Activity
ISTBar Agent Activity
ISTBar Configuration Request
ISTBar Fav Menu Porn Site RequestKaillera Message BO
P2P Kazaa Connection
Kazaa File Request
Kerio Remote Auth BO (TCP)
Kerio Remote Auth BO (UDP)
HTTP Knox Arkeia Remote Stack Overflow
LinkMaker Activity
Look2ME Updates
HTTP Lotus Domino Password Bypass
Linux LPRng Format String Root
HTTP McAfee EPolicy Large Source BO
Mediaticket FileRequest Activity
MedLoad InstallFile Download
MedLoad Logging Activity
MedLoad OCX FileDownload
vMemoryMeter DLL Download (FTP)
MS ASN1 Integer Overflow
mIRC Nickname BO
HTTP MS IE Frame Cross Site Scripting
HTTP MS IIS TranslateF Request
MSN Messenger Login Attempt
HTTP MSN Messenger Login
MSRPC Symantec Backup Exec SelectSvc BO
MS RPC DoS (RPC WinNuke)
MS SQL Server 7.0 Remote DoS
MS SQL Copyscript Distributor Exec
MS SQL Job Scheduling
MS SQL LongRequest Hello BO
MS SQL PacketResolution DoS
MS SQL Registry Manipulation
SQLDict Brute Force Password Tool Usage
MS SQL Stack BO
MS UPnP NOTIFY BO
MSRPC DCOM RPC BO (1)
MSRPC DCOM RPC BO (2)
MSRPC DCOM RPC BO (3)
MSRPC DCOM RPC BO (4)
MSRPC DCOM RPC BO (5)
MSRPC DCOM RPC Heap BO (1)
MSRPC DCOM RPC Heap BO (2)
Microsoft DHCP Service Options BO
MS DirectShow AVI BO
MS DNS Client ATMA Code Exec
HTTP MS Excel XLW 4.0 Workbook CodeExec
HTTP MS Lnk File FaceName BO
SMB MS Windows GDI+ JPEG Overflow
HTTP MS IE Dbl Backslash Local Zone Exec
HTTP MS IE Dbl Backslash CHM File Exec.
HTTP MS IE Macromedia Flash Plugin DoS
HTTP MS IE FTP Proto Hndlr Loc File Disc
HTTP MS IE EXE in IMG Code Execution
HTTP MS IE Local Resource Enumeration
HTTP MS IE Object Element Data DoS
HTTP MS IE Sysimage File Detection
HTTP MS IE MSWebDVD Object DoS
HTTP MS IIS ASP Source Disclosure
HTTP MS IIS ExAir Search DoS
HTTP MS IIS FTP Wildcard DoS
HTTP IIS HTW Cross Site Scripting
HTTP MS Javaprxy DLL BO
NetBIOS MS Messenger Serv. BO (UDP) (1)
NetBIOS MS Messenger Serv. BO (TCP)
MS MSDTC UserAllocate BO
MS Netware NWWKS BO
HTTP MS IIS NTLM ASN1 BO
HTTP SMTP NTLM ASN1 BO
MS ASN1 Integer Overflow TCP
MS ASN1 Integer Overflow UDP
MSRPC PnP GetDeviceList DoS
NetBIOS MS PnP QueryResConflist BO
MS PNP Registry DeviceName BO
MS Printer Spooler Heap BO
HTTP MS JET DB BO
MS RDP Terminal Service DoS
MS RPCSS Attack (2)
MS RPCSS Attack (3)
MS RPCSS Attack (UDP)
MSRPC Mutiple Headers
MS RPC Heap Queue BO
MS RPC License Logging CodeExec
MS RPC Network DDE BO
MSRPC RRAS Buffer Overflow
HTTP MS Shell File Download Ext. Misrep.
MS WINS Replication Protocol Remote BO
HTTP MS Windows MSHTA Shell Execution
HTTP MS Windows WMF Code Exec
HTTP MS Media Player File Attr Corrupt.
Windows Media Player BMP Heap Overflow
MS Word HyperlinkExt BO
MySQL Password Table Change
NaviHelper Installation Activity
NaviHelper Update Activity
NetBIOS Date and Time Enumeration
NetBIOS Disk Enumeration
NetBIOS Group Enumeration
MS RPC LSASS DS Oversized Request (TCP)
MS RPC LSASS DS Oversized Request (UDP)
MSRPC Malicious LSASS DS Request BO (1)
MSRPC Malicious LSASS DS Request BO (2)
NetBIOS NBName Query
NetBIOS NBStat Query
NetBIOS Registry Enumeration
NetBIOS RFPoison DoS
NetBIOS Service Enumeration
NetBIOS Share Enumeration
NetBIOS Transport Enumeration
NetBIOS User Enumeration
NetBIOS User Session Enumeration
Nebiwo Worm Propagation (1)
Nebiwo Worm Propagation (2)
Nebiwo Worm Propagation (3)
NetBIOS RFParalyze DoS
NewDotNet Redirecting Mistyped URL
HTTP NNTP XPAT Cmd Query Overflow
NTPD Field Value BO
Oracle TNS Listener DoS
Oracle XDB FTP BO (1)
Oracle XDB FTP BO (2)
OS X Help Remote Code Execution
Outlook Express NNTP LIST Newsgroup BO
P2PNetworking SetupFile Request
P2P Ares Client Connection
P2P BitTorrent Activity
P2P BitTorrent Request
P2P DirectConnect Application
P2P Edonkey Ping Message
P2P Edonkey Start Upload Request
P2P Emule Kademlia Request
P2P Fasttrack Network Ping Messages
P2P Manolito Client Usage
P2P Mute Usage
P2P OpenFT File Request
P2P Overnet Search Request (UDP)
P2P Peercast Application
P2P SoulSeek Usage
Perfect InstallFIle Download
HTTP PHP Nuke ConfigFile Request
POP2 UW Anonymous BO
POP3 Generic User BO
MS PPTP Server Buffer Overflow
PWDump Tool Activity
HTTP Quadro Data Transfer
Quake 3 Connection
HTTP QuickSearch Activity
QuickSearch DNS Request
RAS PPTP Malformed Ctrl Packet DoS
HTTP RealPlayer Error Msg Format String
RealVNC NULL Auth Bypass Attempt
RealNetwork Helix Transport BO
RealPlayer Helix LongMeth URI BO
Remote BinLogin BO 1
Remote BinLogin BO 2
RPC DCOM GetClassObject DoS
MSRPC DNS Server BO
MSRPC Spooler GetPrinterData DoS
W32 Looked CreateFile Request
RPC W32.Looked JobAddRequest
MSRPC Client Svc Netware BO (1)
MSRPC Client Svc Netware DoS
MSRPC SrvSvc NetApi Buffer Overflow (1)
MSRPC SrvSvc NetApi Buffer Overflow (2)
MSRPC WorkStation NetJoin BO
R(X)BOT Advanced-Scan Commands
R(X)BOT Bot Scan Commands
R(X)Bot Clone Commands
R(X)Bot DDOS Commands
R(X)BOT Keylog Commands
R(X)Bot Nick and Kill Thread Commands
R(X)BOT Videocapture Commands
SafeSearch Redirection Attempt
SalesLogix File Upload Dir. Traversal
ShopAtHome Agent Image Download
ShopAtHome Agent Preferences
HTTP ShopNav Uploading Reg Info
Shoutcast Remote Format String
SideSearch Upgrade Activity
SIPfoundry sipXtapi Library BO
Skype Requesting Updates (1)
Skype Requesting Updates (2)
Slagent DLL RequestSlagent Registry CLSID
SMB Guest Login
ISS SMB Parsing Heap Overflow
SMB W32.Looked File Transfer
NetBIOS NT Winlogon DoS
SMB Request BO
SMB Srv.sys Driver Remote Code Execution
SMB Server Transaction Name BO
SMB Trans2Open Overflow (1)
SMB Trans2Open Overflow (2)
MS RPC Workstation Service BO (TCP)
MS RPC Workstation Service BO (UDP)
Trojan Barok Infostealing Activity
SMTP Domino Mail Loop DoS
SMTP Domino SMTP ENVID BO
SMTP EXPN Vintra DoS
SMTP MS Outlook VEVENT Code Exec
Sendmail Async Handler Remote Code Exec
SNMP Default Community Name Access
SNMP V2 GetBulk Request Code Execution
Snort BackOrifice Preprocessor BO
Sobig F Worm Master Probe
Telnet SoftEther VPN Software
180Solutions Update SpyBot Keylogger Commands
SSH CRC-32 Boundary BO
SSH BSD Auth BO
MS SSL Library DoS
Starware Installation Activity
Starware Update ActivityStatBlaster Update
SuperSpider Hijack Activity
SurfSideKick AutoUpdate Activity
HTTP SurfSideKick Installation Activity
vSymantec AV Stack Overflow
TargetSaver Update Activity
Telnet TTYPROMPT BO
Blaster Worm TFTP Backdoor (TCP)
Blaster Worm TFTP Backdoor (UDP)
Red Hat PXE Server Remote BO
Veritas Backup Exec Agent DoSVeritas Backup Exec Agent Auth BO
Veritas Backup Exec Hostname BO
Veritas Backup Exec Arb. File Download
Veritas bpjava Format String BO
Veritas NetBackup Invalid Timestamp BO
VirtualBouncer Installation Activity
VirtualBouncer Update Activity
Virtumonde Requesting DLL Files
Trend Micro Viruswall Catinfo BO
VMware NAT FTP Commands BO
VNC Login Failed
VNC Login Success
VNC Server Banner
Alcarys Worm Propagation
Aliz Worm Propagation
Apost Worm Propagation
W32 Beagle Backdoor Auth. String
Brid A Worm PropagationFrethem L Worm Propagation
Goner A Worm Propagation
BD Lovgate Commands
Klez H Worm Propagation
Lirva C Worm Propagation
Maldal C Worm Propagation
Mybabypic Worm Propagation
Mylife J Worm Propagation
Nimda Worm A
Nimda Worm E
W32 Nimda Share Propagation 2
W32 Polip Backdoor Communication
W32 Polip Gnutella Communication
Redesi B Worm Propagation
Shoho Worm Propagation
Sircam Worm Propagation
Witty Worm Propagation
Yaha Worm Propagation
MSRPC WebClient DAVRCreateConnection BO
WebHancer Posting Information
Webrebate Activity
WebSearch Activity
Websearch Configuration Request
Websearch Reporting Log Information
Welchia Locator Service BO
HTTP Whisker/Libwhisker Scan (1)
HTTP Whisker/Libwhisker Scan (2)
WildMedia WinFetch Activity
NetBIOS MS Locator Service BO
HTTP Windows Sharepoint Svc Spoofing
MS Win9x IE5/Telnet Heap Overflow
Windupdates Mediapass Installer CLSID
WinMail Directory Traversal
HTTP WMF Metahdr FileSize Int. Overflow
WuFTPd Realpath BO
WuFTPd Site Exec BO
WuFTPd Heap BO
HTTP MS XP HCP URI Handler Abuse
Yahoo IM Activex yauto.dll BO
Yahoo IM LoginYahoo IM Conference Invite
Yahoo Conference Login
Yahoo IM File Transfer
Yahoo IM Activity
Yahoo Ping
ZangoSearch CLSID Reg. Subkey Install

Last modified on: Wednesday, 03-Oct-07 22:26:28