TMS zl Module IPS/IDS Signature Reference Guide RLX.10.2.2.94
ProCurve TMS zl Module IPS/IDS Signature
Reference Guide Version RLX.10.2.2.94
745
intruder to execute arbitrary code with SYSTEM privileges.Additionally, Windows 98 and Windows 98SE may be
affected if you have installed the Windows XP Internet Connection Sharing client.
Signature ID: 32665
MS Windows UPnP Stack Overflow (HTTP Header NT) vulnerability
Threat Level: Severe
Industry ID: CVE-2007-1204 CVE-2001-0876 Bugtraq: 23371,3723 Nessus: 11765
Signature Description: A buffer overflow in Universal Plug and Play (UPnP) service on Microsoft Windows XP,
Microsoft Windows ME, and Microsoft Windows 98 permits an intruder to run arbitrary code on vulnerable
systems.Universal Plug and Play (UPnP) is a system to allow network devices to operate together.A vulnerability in the
Microsoft Windows XP and Windows ME implementation of UPnP Stack(HTTP Header NT) may permit an intruder
to execute arbitrary code with SYSTEM privileges.Additionally, Windows 98 and Windows 98SE may be affected if
you have installed the Windows XP Internet Connection Sharing client.
Signature ID: 32666
MS Windows UPnP Stack Overflow (HTTP Header SID) Vulnerability
Threat Level: Severe
Industry ID: CVE-2007-1204 CVE-2001-0876 Bugtraq: 23371,3723 Nessus: 11765
Signature Description: A buffer overflow in Universal Plug and Play (UPnP) service on Microsoft Windows XP,
Microsoft Windows ME, and Microsoft Windows 98 permits an intruder to run arbitrary code on vulnerable
systems.Universal Plug and Play (UPnP) is a system to allow network devices to operate together.A vulnerability in the
Microsoft Windows XP and Windows ME implementation of UPnP Stack(HTTP Header SID) may permit an intruder
to execute arbitrary code with SYSTEM privileges.Additionally, Windows 98 and Windows 98SE may be affected if
you have installed the Windows XP Internet Connection Sharing client.
Signature ID: 32667
MS Windows UPnP Stack Overflow (HTTP Header TIMEOUT)
Threat Level: Severe
Industry ID: CVE-2007-1204 CVE-2001-0876 Bugtraq: 23371,3723 Nessus: 11765
Signature Description: A buffer overflow in Universal Plug and Play (UPnP) service on Microsoft Windows XP,
Microsoft Windows ME, and Microsoft Windows 98 permits an intruder to run arbitrary code on vulnerable
systems.Universal Plug and Play (UPnP) is a system to allow network devices to operate together.A vulnerability in the
Microsoft Windows XP and Windows ME implementation of UPnP Stack(HTTP Header TIMEOUT) may permit an
intruder to execute arbitrary code with SYSTEM privileges.Additionally, Windows 98 and Windows 98SE may be
affected if you have installed the Windows XP Internet Connection Sharing client.
Signature ID: 32669
HTTP MS Help Workshop .HPJ File Buffer Overflow vulnerability
Threat Level: Information
Industry ID: CVE-2007-0427
Bugtraq: 22135
Signature Description: Microsoft HTML Help Workshop is vulnerable to a stack-based buffer overflow, caused by
improper bounds checking of help project files (.HPJ).By persuading a victim to open a specially-crafted .HPJ file
containing an unusually long string, a remote attacker could overflow a buffer and execute arbitrary code on the system
with privileges of the victim.An attacker could exploit this vulnerability by sending the malicious file to a victim as an
email attachment or hosting it on a Web site. Exploit attempts of this vulnerability detected using a combination of two
signatures, this is second signature and generate log message.