TMS zl Module IPS/IDS Signature Reference Guide RLX.10.2.2.94
ProCurve TMS zl Module IPS/IDS Signature
Reference Guide Version RLX.10.2.2.94
994
executables) to be automatically downloaded to the user's computer without any user prompt. No remedy is available as
of 4 September, 2008.
Signature ID: 35657
Google Chrome Browser 0.2.149.27 denial of service attack
Threat Level: Severe
Signature Description: Google Chrome is a free and open source web browser developed by Google. The name is
derived from the graphical user interface frame, or chrome, of web browsers. A beta version for Microsoft Windows
was released on 2 September 2008. Google Chrome Browser 0.2.149.27 is vulnerable to denial of service attack. By
sending a specially crafted php file with large filename in the Content-Disposition header field user can crash the
google chrome browser. When user loads this specially crafted php file in the chrome browser denial of service will
take place. No remedy is available as of 5 September, 2008.
Signature ID: 35658
Google Chrome Browser 0.2.149.27 Remote Buffer Overflow Vulnerability
Threat Level: Severe
Signature Description: Google Chrome is a free and open source web browser developed by Google. The name is
derived from the graphical user interface frame, or chrome, of web browsers. A beta version for Microsoft Windows
was released on 2 September 2008. The vulnerability is caused due to a boundary error when handling the "SaveAs"
function. On saving a malicious page with an overly long title (<title> tag in HTML), the program causes a stack-based
overflow and makes it possible for attackers to execute arbitrary code on users’ systems. To exploit the
Vulnerability, a hacker might construct a specially crafted Web page, which contains malicious code. By tricking users
into visiting the web page and convinces them to save this Page the code would be executed, giving attacker the
privilege to make use of the affected system. No remedy is available as of 6 September, 2008.
Signature ID: 35659
Samsung DVR SHR2040 HTTPD Remote Denial of Service Attack
Threat Level: Warning
Signature Description: Samsung Digital Video Recorders are basically mini-PCs that allow a user to record TV
broadcasts in a digital form via cable or DirectTV transmissions in digital form on a hard drive located inside the
recorder. DVRs provides the same recording and time-shifting functions as a VCR, just in a different medium.
Samsung DVR SHR2040 Firmware Version B3.03E-K1.53-V2.19_0705281908 is vulnerable to denial of service
attack. The vulnerability is caused due to an unspecified error in the cgis files filter used for configure properties. By
sending a specially crafted HTTP request to tcp ports 554-557 attacker can cause the HTTP service on the system to
crash. No remedy is available as of 08 September, 2008.
Signature ID: 35660
Peachtree Accounting 2004 PAWWeb11.ocx ActiveX Insecure Method
Threat Level: Warning
Signature Description: Peachtree Accounting is business management software published by Sage Software and sold
primarily in the United States. There have been several generations of software sold under the Peachtree Accounting
name. Peachtree was the first business software introduced for microcomputers and the oldest microcomputer software
program for business in current use. Peachtree Accounting 2004 and other versions with PAWWeb11.ocx are
vulnerable to remote code execution vulnerability. This vulnerability is caused by sending specially crafted commands
to ExecutePreferredApplication method in PAWWeb11.ocx activex control. By persuading a victim to visit a malicious
Web page containing malicious data, a remote attacker could execute arbitrary code in the victim's system. No Patch
details are available as of 10 September, 2008.