Karalon - News Update | Network Security Assessment | Vulnerability Assessment | Vulnerability Scanner | Network Security Scanner | Security Assessment

Home Products Downloads News Partners About Us

Karalon News Update
21st May 2007

Traffic File Update May 2007

Traffic IQ Pro is already the most comprehensive testing and validation solution available today for network and inline devices. With its ease of use and extensive library of normal and threat traffic files the product can be used to easily create and replay simple or complex stateful testing scenarios to allow the validation of the configuration of inline network devices such as firewalls, IPS, routers, switches and other critical network systems in a controlled, repeatable and safe way.

Note: Traffic file updates are available to licensed users only.

This update includes the following traffic files:

Application Exploits

CA BrightStor ARCserve Backup UDP Probe Buffer Overflow
CA BrightStor ARCserve Backup UniversalAgent Overflow
CA BrightStor ARCserve Message Engine Buffer Overflow
CA BrightStor ARCserve Tape Engine overflow (windows exec)
CA BrightStor ARCserve Tape Engine overflow (windows_adduser)
CA BrightStor ARCserve Tape Engine overflow (windows_adduser_bind_tcp)
CA BrightStor ARCserve Tape Engine overflow (windows_download_exec)
CA BrightStor Discovery Service TCP Overflow
CA Products Message Engine RPC Server Heap Overflow
Corel Igcore15d.DLL Malformed CLP Overflow (POC_1)
Corel Igcore15d.DLL Malformed CLP Overflow
HTTP Adobe Photoshop Multiple File Format Overflow
HTTP Corel WordPerfect Office PRS Buffer Overflow
HTTP Foxit Reader Malformed PDF File DoS
HTTP HP Mercury Quality Center ActiveX Buffer Overflow
HTTP IrfanView ANI Buffer Overflow (CVE-2007-1867)
HTTP IrfanView ANI Format Buffer Overflow POC_1
HTTP IrfanView ANI Format Buffer Overflow
HTTP MS MDAC Code Execution (MS06-014) POC_2
HTTP MS MDAC RDS.Dataspace ActiveX Code Execution
HTTP NCTAudioFile2 ActiveX Control Buffer Overflow (CVE-2007-0018)
HTTP Sami Web Server Denial of Service (CVE-2007-0548)
HTTP Second Sight ActiveGS ActiveX control filename overflow
HTTP Second Sight ActiveMod ActiveX control filename overflow
HTTP Winamp MIDI File Processing DoS
HTTP Wserve Web Server GET Request Buffer Overflow
Microsoft Word 2007 WWLib.DLL Buffer Overflow POC_2
Microsoft Word 2007 WWLib.DLL Buffer Overflow
MS DNS RPC Service extractQuotedChar Overflow TCP (windows_adduser)
MS DNS RPC Service extractQuotedChar Overflow TCP (windows_exec)
MS DNS RPC Service extractQuotedChar Overflow TCP (windows_exec_find_tag)
MS DNS RPC Service extractQuotedChar Overflow TCP (windows_shell_bind_tcp)
MS DNS RPC Service extractQuotedChar Overflow TCP (windows_shell_reverse_tcp)
Protocol ICMP Redirect (Redirect for host)
RPC Micorosoft Windows DNS RPC Buffer Overflow
SMB Microsoft Windows SMB Protocol DoS (MS06-063)
Windows Animated Cursor Buffer Overflow (MS07-017 winXP SP2)
Windows Animated Cursor Buffer Overflow (MS07-017) POC_4
Windows Animated Cursor Exploit (ani_cursor)
Windows Help File Unspecified Heap Overflow

Security Evasion Techniques

Evasion DCERPC append multiple fake bind (CVE-2006-5143)
Evasion DCERPC maximum fragment size (CVE-2006-5143)
Evasion DCERPC multiple fake bind (CVE-2006-5143)
Evasion DCERPC prepend multiple fake bind (CVE-2006-5143)
Evasion DCERPC smb_pipeio_rw (CVE-2006-5143)
Evasion DCERPC smb_pipeio_trans (CVE-2006-5143)
Evasion SMB obscure_trans_pipe_level_1 (CVE-2006-3942)
Evasion SMB pad_data_level_1 (CVE-2006-3942)
Evasion SMB pipe_evasion (CVE-2006-3942)