TMS zl Module IPS/IDS Signature Reference Guide RLX.10.2.2.94
ProCurve TMS zl Module IPS/IDS Signature
Reference Guide Version RLX.10.2.2.94
951
Signature ID: 35475
IBM Lotus Domino LDAP Server Memory Exception Vulnerability
Threat Level: Warning
Signature Description: Lightweight Directory Access Protocol(LDAP) is an application protocol for querying and
modifying directory services. IBM Louts Domino, version 7.0 and prior, is a denial of service vulnerability in the
LDAP service. This issue is triggered when an attacker sending a specially-crafted data in the LDAP bind request to
TCP port 389. The successful exploitation may allow an attacker to cause the server to crash or execute arbitrary code
on the system.
Signature ID: 35476
MySQL Login Handshake Information Disclosure
Threat Level: Warning
Industry ID: CVE-2006-1516 Bugtraq: 17780
Signature Description: MySQL is an open-source Relational Database Management System(RDBMS) for executing
Structured Query Language(SQL) statements. It is often used as backend database for other open-source software. It
supports client/server communications as well as connections from client applications using the MySQL network
protocol over the default TCP port 3306. MySQL, version 4.0.x up to 4.0.26, 4.1.x up to 4.1.18, and 5.0.x up to 5.0.20,
is a information disclouser vulnerability. By submit a specially crafted login packet to cause the initial database name
to be filled with uninitialized memory content. The vulnerability is triggered when the server responds to the crafted
login packet. The successful exploitation may allow an attacker to obtain sensitive information. The issue is fixed in the
version of MySQL(4.1.19 or later and 5.0.21 or later), which available from vendor's web site. The Administrators are
advice to update the latest version of MySQL(4.1.19 or later and 5.0.21 or later) for resolve the issue.
Signature ID: 35477
Microsoft Windows Active Directory Crafted LDAP Request Denial of Service
Threat Level: Warning
Industry ID: CVE-2007-3028 Bugtraq: 24796
Signature Description: Lightweight Directory Access Protocol(LDAP) is an application protocol for querying and
modifying directory services running over TCP/IP. Microsoft Windows 2000 SP4 Active Directory is a denial of
service vulnerability. This issue is triggered when an attacker supplied improper handling of 'filter' portion in client
LDAP 'SearchRequest' message. The successful exploitation may allow an attacker to cause the server to stop
responding. The issue is fixed in the patch MS07-039. The Administrators are advise to update the patch for resolve the
issue.
Signature ID: 35478
Mcafee FreeScan Information Disclosure Vulnerability
Threat Level: Severe
Industry ID: CVE-2004-1908 Bugtraq: 10077
Signature Description: FreeScan is a free online virus scanning service from McAfee. During the first online scan, the
ActiveX control CoMcFreeScan is downloaded to the host. McAfee FreeScan(mcfscan.dll) is a information Disclosure
vulnerability. This issue is triggered when an attacker create a specially-crafted web page that invokes the
McFreeScan.CoMcFreeScan.1 object and the GetSpecialFolderLocation function. This function accepts an integer
parameter that specifies the reference code of a system file or directory. The successful exploitation may allow an
attacker to disclose sensitive information, such as directory paths, including the My Documents directory, which
contains the username. No remedy available as of December 6, 2008.