TABLE OF CONTENTS For configuration management purposes, the following list of signatures is grouped by the software release version from which it was publicly released. For more information regarding these signatures refer to the signature descriptions above or go to www.cisco.com.
Release version S49
3327-Windows RPC DCOM Overflow
3328-Windows SMB/RPC NoOp Sled
Release version S48
1109-Cisco IOS Interface DoS
5380-phpBB SQL injection:
5382- Xpressions SQL Admin Bypass
5383-Cyberstrong eShop SQL Injection
6256- HTTP Authorization Failure
Release version S47
5375-Apache mod_dav Overflow
5376-iisPROTECT Admin SQL Injection
5377-xp_cmdshell in HTTP args
5378-Vignette TCL Injection Command Exec
5379-Windows Media Services Logging ISAPI Overflow
11204-Jabber Activity
Release version S46
3123-NetBus Pro Traffic
3124-Sendmail prescan Memory Corruption
3176-Cisco ONS FTP DoS
3326-Windows Startup Folder Remote Access
5369-Win32 Apache Batch File CmdExec
5370-HTDig File Disclosure
5371-bdir.htr Access
5372-ASP %20 source disclosure
5373-IIS 5 Translate: f Source Disclosure
5374-IIS Executable File Command Exec
9025-Back Door Probe (TCP 20168)
9026-Back Door Probe (TCP 1092)
9027-Back Door Probe (TCP 2018)
9028-Back Door Probe (TCP 2019)
9029-Back Door Probe (TCP 2020)
9030-Back Door Probe (TCP 2021)
9225-Back Door Response (TCP 20168)
9226-Back Door Response (TCP 1092)
9227-Back Door Response (TCP 2018)
9228-Back Door Response (TCP 2019)
9229-Back Door Response (TCP 2020)
9230-Back Door Response (TCP 2021)
11014-Hotline Client Login
11015-Hotline File Transfer
11016-Hotline Tracker Login
11200-Yahoo Messenger Activity
11201-MSN Messenger Activity
Release version S44
1300-TCP Segment Overwrite
3325-Samba call_trans2open Overflow
3732-MSSQL xp_cmdshell Usage
5367-Apache CR / LF DoS
5368-Cisco ACS Windows CSAdmin Overflow
9024-Back Door...
