TMS zl Module IPS/IDS Signature Reference Guide RLX.10.2.2.94
ProCurve TMS zl Module IPS/IDS Signature
Reference Guide Version RLX.10.2.2.94
797
Signature ID: 34459
Microsoft Office Web Components MSOWC.DLL ActiveX Control Buffer Overflow
Threat Level: Warning
Industry ID: CVE-2006-4695
Bugtraq: 28135
Signature Description: Functionality, such as spreadsheets, tables, and charts. These ActiveX controls are provided by
the file MSOWC.DLL. By persuading a victim to visit a specially-crafted Web page, a remote attacker could exploit
this vulnerability to corrupt memory and execute arbitrary code on the system. Set the kill bit for CLSID 0002E510-
0000-0000-C000-000000000046 to resolve this issue
Signature ID: 34460
Microsoft Office Web Components MSOWC.DLL ActiveX Control Buffer Overflow
Threat Level: Warning
Industry ID: CVE-2006-4695 Bugtraq: 28135
Signature Description: Microsoft Office Web Components are ActiveX controls that provide Microsoft Office
functionality, such as spreadsheets, tables, and charts. These ActiveX controls are provided by the file MSOWC.DLL.
By persuading a victim to visit a specially-crafted Web page containing UTF-16 encoded malformed data, a remote
attacker could exploit this vulnerability to corrupt memory and execute arbitrary code on the system. Set the kill bit for
CLSID 0002E510-0000-0000-C000-000000000046 to resolve this issue
Signature ID: 34461
Microsoft Office Web Components MSOWC.DLL ActiveX Control Buffer Overflow
Threat Level: Warning
Industry ID: CVE-2006-4695 Bugtraq: 28135
Signature Description: Microsoft Office Web Components are ActiveX controls that provide Microsoft Office
functionality, such as spreadsheets, tables, and charts. These ActiveX controls are provided by the file MSOWC.DLL.
By persuading a victim to visit a specially-crafted Web page, a remote attacker could exploit this vulnerability to
corrupt memory and execute arbitrary code on the system. Set the kill bit for CLSID corresponding to progid
OWC.Spreadsheet.9 to resolve this issue.
Signature ID: 34462
Computer Associates Products Discovery Service Remote Buffer Overflow
Threat Level: Warning
Industry ID: CVE-2006-6379
Bugtraq: 21502
Signature Description: Computer Associates(CA) Brighstor ARcserve Backup and Business Protection Suite provide
complete integrated backup and data protection solutions for distributed server, clients, databases and applications for
various operating systems. Computer Associate Brightstor ARCserve Backup products are vulnerable to a stack-based
buffer overflow. By sending an overly long string following the command code 0x9b or 0x9c (above 80 bytes without
string containing Null characters) via UDP on port 41524, a remote attacker could overflow a buffer and execute
arbitrary code on the system.
Signature ID: 34463
Computer Associates Products Discovery Service Remote Buffer Overflow
Threat Level: Warning
Industry ID: CVE-2006-6379
Bugtraq: 21502
Signature Description: Computer Associates(CA) Brighstor ARcserve Backup and Business Protection Suite provide
complete integrated backup and data protection solutions for distributed server, clients, databases and applications for
various operating systems. Computer Associate Brightstor ARCserve Backup products are vulnerable to a stack-based
buffer overflow. By sending an overly long string following the command code 0x9b or 0x9c (above 80 bytes without