TMS zl Module IPS/IDS Signature Reference Guide RLX.10.2.2.94

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module

311

312

313

314

315

316

317

318

319

320

ProCurve TMS zl Module IPS/IDS Signature

Reference Guide Version RLX.10.2.2.94

314

Signature ID: 3156

BACKDOOR Matrix 2.0 Server access

Threat Level: Severe

Signature Description: This trojan affects windows operating systems.Matrix is a Trojan Horse offering the attacker the

ability to upload files to, and download files from the victim host, retrieve passwords and start and stop an FTP server

on your computer. This signature detects a MavericksMatrix backdoor running on your network. This signature triggers

for backdoor Matrix 2.0 Server access.

Signature ID: 3157

BACKDOOR Net Metropolitan File List vulnerability

Threat Level: Warning

Signature Description: This trojan written in Visual Basic that affects Microsoft Windows operating systems. Attacker

attempts to list files on a host infected with the NetMetro Trojan Horse.The target machine may already be

compromised. Net Metropolitan could allow a remote attacker to gain unauthorized access to the system. Net

Metropolitan uses a client/server relationship, where the server component is installed in the victim's system and the

remote attacker has control of the client.

Signature ID: 3158

BACKDOOR QAZ Worm Client Login access vulnerability

Threat Level: Warning

Signature Description: This trojan affects windows operating systems.QAZ is a Trojan Horse offering the attacker the

ability to upload files to, and download files from the victim host.The target machine may already be compromised.

The Qaz backdoor also acts as a worm by connecting to hosts in the Network Neighborhood and attempting to infect

local copies of Notepad.exe with an infected version. affected platforms are Microsoft, Windows 2000, Windows 2003

Server, Windows 95, Windows 98, Windows Me, Windows NT 4.0 and Microsoft, Windows XP.

Signature ID: 3159

BACKDOOR SatansBackdoor.2.0.Beta

Threat Level: Warning

Signature Description: Satans Backdoor is a backdoor programs that attackers can use to access victim's computer

system without victime's knowledge or consent. With the Satans Backdoor, an attacker can retrieve dialup username

and password information. This trojan affects windows operating systems.Satans Backdoor is a Trojan Horse offering

the attacker the ability to upload files to, stealing passwords and download files from the victim host. The target

machine may already be compromised. Affected platforms are Microsoft Windows 95, Windows 98 and Windows NT

4.0.

Signature ID: 3160

BACKDOOR WinCrash 1.0 Server Active

Threat Level: Warning

Signature Description: WinCrash is a backdoor Trojan that affects Microsoft Windows NT 4.0, Windows 98, and

Windows 95 operating systems. <br>The backdoor uses a client/server relationship, where the server component is

installed in the victim's system and the remote attacker has control of the client. The server attempts to open a port to

allow the client system to connect. SO WinCrash could allow a remote attacker to gain unauthorized access to the

system.