TMS zl Module IPS/IDS Signature Reference Guide RLX.10.2.2.94
ProCurve TMS zl Module IPS/IDS Signature
Reference Guide Version RLX.10.2.2.94
93
Signature ID: 630
Alibaba CGI post32.exe arbitrary command execution Vulnerability
Threat Level: Information
Bugtraq: 1485
Signature Description: Alibaba is a web server that runs on Windows platforms. This rule triggered when an attacker
can send specially-crafted URL request to the post32.exe with the piped commands. The successful exploitation allow
an attacker to execute arbitrary commands on the web server. The Affected version of Alibaba is 2.0.0.
Signature ID: 631
WEB-MISC chip.ini access Vulnerability
Threat Level: Information
Industry ID: CVE-2001-0749 Bugtraq: 2775
Signature Description: The Beck IPC@CHIP is a single chip embedded webserver. The Web Server's root directory is
set to / by default. This could allow a remote attacker can download arbitrary files from any location on the system,
including the chip.ini file, this file contains all of the login names and associated passwords for the device. No remedy
available as of September, 2008.
Signature ID: 633
Lotus Domino Dot File Disclosure Vulnerability
Threat Level: Warning
Industry ID: CVE-2003-1408 Bugtraq: 6841
Signature Description: Lotus Domino is a multi-platform application server developed by IBM. Lotus Domino
provides the complete infrastructure needed to create, test, deploy, and manage distributed, multi-lingual applications,
including directory, database, Web-server, email server and so on, all in one application. Lotus Domino(Lotus Domino
version 5.0 and 6.0) could allow a remote attacker to obtain sensitive information. A remote attacker could send a
specially-crafted URL request appending with a "dot" character. This could allow the attacker to view source code and
disclose sensitive information, such as database credentials, embedded in server side scripts or include files. No remedy
available as of September, 2008.
Signature ID: 634
WEB-MISC Lotus Notes .pl script source download Vulnerability
Threat Level: Information
Industry ID: CVE-2003-1408
Bugtraq: 6841
Signature Description: Lotus Domino is a multi-platform application server developed by IBM. Lotus Domino
provides the complete infrastructure needed to create, test, deploy, and manage distributed, multi-lingual applications,
including directory, database, Web-server, email server and so on, all in one application. Lotus Domino(Lotus Domino
version 5.0 and 6.0) could allow a remote attacker to obtain sensitive information. A remote attacker could send a
specially-crafted URL request for any non-default Lotus file types(like Perl scripts(".pl")) appended with a "dot"
character. This could allow the attacker to view source code and disclose sensitive information, such as database
credentials, embedded in server side scripts or include files. No remedy available as of September, 2008.
Signature ID: 635
WEB-MISC Lotus Notes .csp script source download Vunerability
Threat Level: Information
Industry ID: CVE-2003-1408 Bugtraq: 6841
Signature Description: Lotus Domino is a multi-platform application server developed by IBM. Lotus Domino
provides the complete infrastructure needed to create, test, deploy, and manage distributed, multi-lingual applications,
including directory, database, Web-server, email server and so on, all in one application. Lotus Domino(Lotus Domino
version 5.0 and 6.0) could allow a remote attacker to obtain sensitive information. A remote attacker could send a