Karalon - News Update | Network Security Assessment | Vulnerability Assessment | Vulnerability Scanner | Network Security Scanner | Security Assessment

Home Products Downloads News Partners About Us

Karalon News Update
14th November 2006

Traffic File Update November 2006

Traffic IQ Pro is already the most comprehensive testing and validation solution available today for network and inline devices. With its ease of use and extensive library of normal and threat traffic files the product can be used to easily create and replay simple or complex stateful testing scenarios to allow the validation of the configuration of inline network devices such as firewalls, IPS, routers, switches and other critical network systems in a controlled, repeatable and safe way.

Note: Traffic file updates are available to licensed users only.

This update includes the following traffic files:

Application Exploits

Asterisk Skinny Channel Driver get_input Function Overflow
FTP acFTP 1.5 (PBSZ) Denial of Service
FTP WarFTP Daemon CWD Command DoS Vulnerability
FTP WarFTP Daemon USER Command DoS Vulnerability
FTP XM Easy Personal FTP Server NLST DoS
HTTP ARX PrivateWire Online Registration Buffer Overflow
HTTP Essentia Web Server GET Request Overflow
HTTP Essentia Web Server HEAD Request Overflow
HTTP IE 7 Popup Window Address Bar Spoofing
HTTP IE native function iteration denial of service
HTTP IE NDFXArtEffects Stack Overflow Vulnerability
HTTP IE NMSA.ASFSourceMediaDescription dispValue Overflow
HTTP IE OVCtl NewDefaultItem Method NULL Dereference
HTTP IE Redirect Cross-Domain Information Disclosure
HTTP Microsoft IE daxctle.ocx denial of service
HTTP Microsoft MDAC RDS.Dataspace ActiveX Remote Code Execution (MS06-014)
HTTP Microsoft MDAC SoftwareDistribution.WebControl ActiveX Code execution
HTTP Microsoft MDAC WMIScriptUtils.WMIObjectBroker ActiveX Code Execution
HTTP Mozilla Firefox createRange Remote DoS
HTTP Mozilla Window Navigator Object Code Execution
HTTP MS IE ADODB.Connection Code Execution
HTTP MS Powerpoint Remote Code Execution (MS06-048)
HTTP MS XMLHTTP ActiveX Control Code Execution
HTTP MS XMLHTTP ActiveX Control Code Execution_1
HTTP Opera CSS Background Property Memory Corruption
HTTP Private Wire Gateway Buffer Overflow (win32_bind)
HTTP Private Wire Gateway Buffer Overflow (win32_exec)
HTTP Safari KHTMLParser popOneBlock code execution
HTTP Windows Explorer Drag and Drop Remote Code Execution
HTTP Windows Hyperlink COM Object Buffer Overflow (MS06-050)
HTTP Windows Hyperlink COM Object Overflow (MS06-050) 2nd
HTTP Windows MHTML URI Buffer Overflow (MS06-043)
HTTP Zyxel Prestige 660H-61 Cross-Site Scripting
IE HTML Rendering Memory Corruption CVE-2006-3637
LDAP OpenLDAP BIND Requests Handling DoS
MS CanonicalizePathName MSO6-040 Overflow (win32_bind)
MS CanonicalizePathName MSO6-040 Overflow (win32_bind_meterpreter)
MS CanonicalizePathName MSO6-040 Overflow (win32_bind_stg)
MS CanonicalizePathName MSO6-040 Overflow (win32_bind_vncinject)
MS CanonicalizePathName MSO6-040 Overflow (win32_reverse_ord)
MS PowerPoint Presentation Handling Remote Code Execution
MS Windows NAT Helper Denial of Service POC_1
MS Windows NAT Helper Denial of Service POC_2
Worm blackworm-with-dns-after-reboot-1
Worm blackworm-with-dns-after-reboot-2
Worm blackworm-with-dns-and-netbios
Worm blackworm-with-dns-and-netbios-after-reboot
Worm blackworm-xp-install-after-reboot
Worm blackworm-XP-SP1-install
Worm blackworm-xp-sp2-after-reboot
Worm blackworm-xp-sp2-install

Standard Protocol Traffic

Protocol AFS (Andrew File System)
Protocol BGP (Border Gateway Protocol)
Protocol DCCP (Type-0 Request Packet)
Protocol DCCP (Type-1 Response Packet)
Protocol DCCP (Type-2 Data Packet)
Protocol DCCP (Type-3 Ack Packet)
Protocol DCCP (Type-4 DataAck Packet)
Protocol DCCP (Type-6 Close Packet)
Protocol DCCP (Type-7 Reset Packet)
Protocol FTP (IBM iSeries communications trace)
Protocol ITU H.225 (VOIP)
Protocol ITU H.245 (VOIP)
Protocol Plan 9 Filesystem (9P)
Protocol Rsync
Protocol RTCP (Real Time Control Protocol)
Protocol RTP (Real-time Transport Protocol)
Protocol RTSP (DESCRIBE Request)
Protocol RTSP (GET_PARAMETER Request)
Protocol RTSP (OPTIONS Request)
Protocol RTSP (PAUSE Request)
Protocol RTSP (PLAY Request)
Protocol RTSP (RECORD Request)
Protocol RTSP (SETUP Request)
Protocol RTSP (TEARDOWN Request)
Protocol RX (ABORT)
Protocol RX (ACK type)
Protocol RX (ACKALL type)
Protocol RX (CHALLENGE)
Protocol RX (RESPONSE)
Protocol SCTP (DATA chunk)
Protocol SCTP (HEARTBEAT ACK chunk)
Protocol SCTP (HEARTBEAT chunk)
Protocol SCTP (SACK chunk)
Protocol SIP 100 Trying Status Message
Protocol SIP 200 OK Status Message
Protocol SIP 401 unauthorized Status Message
Protocol SIP 403 Wrong password Status Message
Protocol SIP ACK Method Call
Protocol SIP Cancel Method Call
Protocol SIP Register Request
Protocol TELNET (IBM iSeries communications trace)
Protocol UDP Lite (Full Coverage)
Protocol UDP Lite (illegal checksum 0)
Protocol UDP Lite (illegal Coverage values)
Protocol UDP Lite (legal Coverage values 8-20)
Protocol WSP (GET Method)
Protocol WSP (REPLY Method)