Karalon - News Update | Network Security Assessment | Vulnerability Assessment | Vulnerability Scanner | Network Security Scanner | Security Assessment

Home Products Downloads News Partners About Us

Karalon News Update
19th October 2007

Traffic File Update October 2007

Traffic IQ Pro is already the most comprehensive testing and validation solution available today for network and inline devices. With its ease of use and extensive library of normal and threat traffic files the product can be used to easily create and replay simple or complex stateful testing scenarios to allow the validation of the configuration of inline network devices such as firewalls, IPS, routers, switches and other critical network systems in a controlled, repeatable and safe way.

Note: Traffic file updates are available to licensed users only.

This update includes the following traffic files:

Application Exploits

Adobe ActionScript SecurityErrorEvent Security Bypass
Apple QuickTime SMIL File Processing Integer Overflow
CA eTrust Intrusion Detection Caller.CallCode Code Execution
CA eTrust Intrusion Detection Caller.DLL Remote Code Execution
CA Multiple Products Arclib.DLL Malformed CHM File DoS
Crystal Reports For Visual Studio RPT File Code Execution (MS07-052)
Crystal Reports For Visual Studio RPT File Code Execution (Standard RPT File - MS07-052)
HP OpenView OVTrace Multiple Remote Buffer Overflow
HTTP Apple iPhone Mobile Safari Browser DoS
HTTP Apple iPhone Mobile Safari Browser Remote Heap Overflow
HTTP Ask Toolbar ShortFormat Property Remote Code Execution (DynamicSehRecord)
HTTP Ask Toolbar ShortFormat Property Remote Code Execution (windows_exec)
HTTP Ask Toolbar ShortFormat Property Remote Code Execution
HTTP EnjoySAP SAP GUI ActiveX Control Buffer Overflow (shell_bind_tcp)
HTTP Logitech VideoCall ActiveX Control Buffer Overflow (bind_shell)
HTTP Microsoft Agent agentdpv.dll ActiveX Malformed URL Stack Overflow POC_1
HTTP Microsoft Agent agentdpv.dll ActiveX Malformed URL Stack Overflow
HTTP Microsoft ASP.NET URI Canonicalization Unauthorized Web Access
HTTP Microsoft ASP.NET URI Canonicalization Unauthorized Web Access_1
HTTP Opera Browser data URI Scheme Address Bar Spoofing
HTTP Symantec NAVComUI.AxSysListView32 ActiveX Code Execution
HTTP Symantec NAVComUI.AxSysListView32OAA ActiveX Code Execution
HTTP Symantec NAVCOMUI.DLL ActiveX (AxSysListView32) Code Execution
HTTP Symantec NAVCOMUI.DLL ActiveX (AxSysListView32OAA) Code Execution
HTTP Yahoo Widgets Engine YDPCTL.DLL ActiveX DoS
IBM Tivoli Storage Manager Express CAD Service Buffer Overflow
Microsoft Agent Trusted Content Spoofing (MS05-032)
Microsoft DirectX RLE Compressed Targa Image Heap Overflow
Microsoft OLE Automation SubstringData Integer Overflow (MS07-043)
Microsoft SQL Server Distributed Management Objects Buffer Overflow
Microsoft SQL Server sqldmo.dll Denial of Service
Microsoft Windows Metafile AttemptWrite Heap Overflow
Microsoft Windows URI Handler Command Execution (mailto)
Microsoft Windows URI Handler Command Execution (news)
Microsoft Windows URI Handler Command Execution (nntp)
Microsoft Windows URI Handler Command Execution (snews)
Microsoft Windows URI Handler Command Execution (telnet)
RPC Trend Micro ServerProtect SPNTSVC.EXE Buffer Overflow
Sun StarOffice, StarSuite and OpenOffice TIFF File Integer Overflow
Trend Micro ServerProtect TMregChange() Stack Overflow
VMware Workstation StartProcess (notepad) Code Execution
VMware Workstation StartProcess Code Execution
Windows Media Player Malformed Skin Header Code Execution (MS07-047)

Backdoors

Backdoor Bumprat v1.2
Backdoor GhostVoice 1.2
Backdoor Nuclear RAT 2.1.0
Backdoor sharK 2.3.0 (Backdoor.Win32.VB.bax)

Security Evasion Techniques

Evasion HTML base64 (Ask Toolbar askBar.dll Buffer Overflow)
Evasion HTML javascript escape (EnjoySAP SAP GUI ActiveX Overflow)
Evasion HTML junk headers (Ask Toolbar askBar.dll Buffer Overflow)
Evasion HTML Transfer Encoding Chunked (Logitech VideoCall)
Evasion HTML unicode utf-16be (Logitech VideoCall)