TMS zl Module IPS/IDS Signature Reference Guide RLX.10.2.2.94
ProCurve TMS zl Module IPS/IDS Signature
Reference Guide Version RLX.10.2.2.94
930
which allows remote attackers to cause a denial of service (infinite loop), as demonstrated using the Codenomicon TLS
Test Tool. CISCO IOS is the operating system used on the vast majority of Cisco Systems routers and all current Cisco
network switches.Linux is the name of a Unix-like computer operating system. Many versions of Linux and Cisco IOS
suffer from this vulnerability.This signature detects non SSL traffic over TCP port 990 (ftps -ftp protocol, control, over
TLS/SSL) which is known to be used for SSL communication.
Signature ID: 35343
Open SSL unknown message type vulnerability
Threat Level: Warning
Industry ID: CVE-2004-0081 Bugtraq: 9899
Signature Description: Secure Sockets Layer (SSL) is a cryptographic protocol that provide secure communication on
the Internet for various services such as web browsing, e-mail, Internet faxing, instant messaging,etc. OpenSSL is an
open source implementation of the SSL and TLS protocols. The core library (written in the C programming language)
implements the basic cryptographic functions and provides various utility functions. Wrappers allowing the use of the
OpenSSL library in a variety of computer languages are available. It is used by many operating systems and network
devices to reduce development time. OpenSSL 0.9.6 before 0.9.6d do not properly handle unknown message types,
which allows remote attackers to cause a denial of service (infinite loop), as demonstrated using the Codenomicon TLS
Test Tool. CISCO IOS is the operating system used on the vast majority of Cisco Systems routers and all current Cisco
network switches.Linux is the name of a Unix-like computer operating system. Many versions of Linux and Cisco IOS
suffer from this vulnerability.This signature detects non SSL traffic over TCP port 992 (telnets - telnet protocol over
TLS/SSL) which is known to be used for SSL communication.
Signature ID: 35344
Open SSL unknown message type vulnerability
Threat Level: Warning
Industry ID: CVE-2004-0081 Bugtraq: 9899
Signature Description: Secure Sockets Layer (SSL) is a cryptographic protocol that provide secure communication on
the Internet for various services such as web browsing, e-mail, Internet faxing, instant messaging,etc. OpenSSL is an
open source implementation of the SSL and TLS protocols. The core library (written in the C programming language)
implements the basic cryptographic functions and provides various utility functions. Wrappers allowing the use of the
OpenSSL library in a variety of computer languages are available. It is used by many operating systems and network
devices to reduce development time. OpenSSL 0.9.6 before 0.9.6d do not properly handle unknown message types,
which allows remote attackers to cause a denial of service (infinite loop), as demonstrated using the Codenomicon TLS
Test Tool. CISCO IOS is the operating system used on the vast majority of Cisco Systems routers and all current Cisco
network switches.Linux is the name of a Unix-like computer operating system. Many versions of Linux and Cisco IOS
suffer from this vulnerability.This signature detects non SSL traffic over TCP port 993 (imaps -imap4 protocol over
TLS/SSL) which is known to be used for SSL communication.
Signature ID: 35345
Open SSL unknown message type vulnerability
Threat Level: Warning
Industry ID: CVE-2004-0081
Bugtraq: 9899
Signature Description: Secure Sockets Layer (SSL) is a cryptographic protocol that provide secure communication on
the Internet for various services such as web browsing, e-mail, Internet faxing, instant messaging,etc. OpenSSL is an
open source implementation of the SSL and TLS protocols. The core library (written in the C programming language)
implements the basic cryptographic functions and provides various utility functions. Wrappers allowing the use of the
OpenSSL library in a variety of computer languages are available. It is used by many operating systems and network
devices to reduce development time. OpenSSL 0.9.6 before 0.9.6d do not properly handle unknown message types,
which allows remote attackers to cause a denial of service (infinite loop), as demonstrated using the Codenomicon TLS
Test Tool. CISCO IOS is the operating system used on the vast majority of Cisco Systems routers and all current Cisco