TMS zl Module IPS/IDS Signature Reference Guide RLX.10.2.2.94
ProCurve TMS zl Module IPS/IDS Signature
Reference Guide Version RLX.10.2.2.94
860
Signature Description: The IMA service is used by Citrix Presentation Server for inter-sever and management
communications. Citrix Presenation Server 4.0 version is vulnerable, this vulnerability allows attackers to execute
arbitrary code, authentication is not required to exploit this vulnerability. The specific flaw exists within the routine
IMA_SECURE_DecryptData1() defined in ImaSystem.dll and is reachable through the Independent Management
Architecture (IMA) service (ImaSrv.exe) that listens on TCP port 2512 or 2513. The encryption scheme used is
reversible and relies on several 32-bit fields indicating the size of the packet and the offsets to the authentication
strings. During the decryption of authentication data an attacker can specify invalid sizes that result in an exploitable
heap corruption. Patches are available in citrix.com website.
Signature ID: 34896
Nullsoft WinAmp Ultravox ultravox-max-msg Header Buffer Overflow vulnerability
Threat Level: Warning
Industry ID: CVE-2006-5567 Bugtraq: 20744
Signature Description: Nullsoft Winamp, the ultimate media player that plays your audio and video files. Nullsoft
Winamp version 5.24 and 5.3 are vulnerable, previous versions also may be affected. AOL Nullsoft Winamp is
vulnerable to a heap-based buffer overflow in the Ultravox protocol handler when processing a malformed ultravox-
max-msg header. By persuading a victim to visit a malicious Web page and clicking on a specially-crafted 'shout:' or
'uvox:' URI, a remote attacker could overflow a buffer and execute arbitrary code on the system. Upgrade latest version
of Winamp (5.31 or later), available from the Winamp Web site.
Signature ID: 34901
Microsoft Excel for Asian Languages Style Handling Buffer Overflow vulnerability
Threat Level: Warning
Industry ID: CVE-2006-3431 Bugtraq: 18872
Signature Description: Microsoft Excel (full name Microsoft Office Excel) is a proprietary spreadsheet application
written and distributed by Microsoft for Microsoft Windows and Mac OS X. It features calculation, graphing tools,
pivot tables. Microsoft Office Excel 2003, Microsoft Excel 2004 for Mac are vulnerable in certain Asian language
versions of Microsoft Excel might allow user-assisted attackers to execute arbitrary code via a crafted STYLE record in
a spreadsheet that triggers the overflow when the user attempts to repair the document or selects the "Style" option.
Signature ID: 34904
FreeRADIUS Unspecified Denial of Service vulnerability
Threat Level: Warning
Industry ID: CVE-2004-0938 Bugtraq: 11222
Signature Description: Remote Authentication Dial In User Service (RADIUS) is a networking protocol that uses
access servers to provide centralized management of access to large networks. RADIUS is commonly used by ISPs and
corporations managing access to the internet or internal networks employing a variety of networking technologies,
including modems, DSL, wireless and VPNs. reeRADIUS Server versions 0.8.0 to 1.0.0 vulnerable, that may allow a
remote denial of service. The issue is triggered when when the server received an Access-Request or Accounting-
Request packet containing an Ascend-Send-Secret or Ascend-Recv-Secret attribute, it could be convinced to call a
function to decode the contents of the attribute, with a NULL pointer, where that function expected a pointer to a valid
data structure. That function would de-reference the NULL pointer, and cause the server to core dump.
Signature ID: 34908
Trend Micro Products AntiVirus Library Buffer Overflow vulnerability
Threat Level: Warning
Industry ID: CVE-2005-0533
CVE-2005-0350 Bugtraq: 12643
Signature Description: Trend Micro AntiVirus Library VSAPI before 7.510 is vulnerable, this product allows remote
attackers to execute arbitrary code via a crafted ARJ file with long header file names then heap-based buffer overflow