Home   Products   Downloads   News   About Us   My Account
 
   Watch the Traffic IQ Professional Movie
 
idappcom News Update 
31st July 2009
 
Traffic File Update July 2009

Traffic IQ Pro is already the most comprehensive testing and validation solution available today for network and inline devices. With its ease of use and extensive library of normal and threat traffic files the product can be used to easily create and replay simple or complex stateful testing scenarios to allow the validation of the configuration of inline network devices such as firewalls, IPS, routers, switches and other critical network systems in a controlled, repeatable and safe way.

Note: Traffic file updates are available to licensed users only.

This update includes the following traffic files:

Security Evasion Techniques

Evasion HTML base64 (for CVE-2008-0015)
Evasion HTML base64 double_pad (for CVE-2009-1136)
Evasion HTML javascript escape (for CVE-2008-0015)
Evasion HTML javascript escape (for CVE-2009-1136)
Evasion HTML unicode utf-16le (for CVE-2008-0015)
Evasion HTTP chunked (for CVE-2009-1136)
Evasion HTTP Header Folding (for CVE-2008-0015)
Evasion HTTP Header Folding (for CVE-2009-1136)
Evasion HTTP junk headers (for CVE-2008-0015)
Evasion HTTP junk headers (for CVE-2009-1136)

Application Exploits 

eEye Retina WiFi Scanner '.rws' File Buffer Overflow Vulnerability
Ekiga GetHostAddress Remote Denial of Service Vulnerability
HTTP Apple Safari servePendingRequests() Denial of Service
HTTP Avax Vector 'avPreview.ocx' Remote Buffer Overflow Vulnerability
HTTP Citrix XenCenterWeb Cross-Site Request Forgery Vulnerability
HTTP Citrix XenCenterWeb Cross-Site Scripting Vulnerability
HTTP Citrix XenCenterWeb Input Validation Vulnerability
HTTP Citrix XenCenterWeb Remote Command Execution Vulnerability
HTTP CommuniGate Pro Web Mail URI Parsing HTML Injection Vulnerability
HTTP Firefox 3.5 escape() Return Value Memory Corruption (win_exec)
HTTP Firefox 3.5 escape() Return Value Memory Corruption (win_shell_bind_tcp)
HTTP Horde 'Passwd' Module Cross Site Scripting Vulnerability
HTTP iDefense COMRaider Multiple Insecure Method Vulnerabilities
HTTP Microsoft Internet Explorer 'AddFavorite' Method Buffer Overflow Vulnerability
HTTP Microsoft Internet Explorer 'findText()' Unicode Parsing DoS
HTTP Mozilla Firefox 3.5 'TraceMonkey' Component Remote Code Execution
HTTP Mozilla Firefox 3.5 'TraceMonkey' Component Remote Code Execution_1
HTTP Mozilla Firefox and Thunderbird RDF File Handling Remote Memory Corruption
HTTP Mozilla Firefox and Thunderbird RDF File Handling Remote Memory Corruption_1
HTTP Mozilla Firefox and Thunderbird RDF File Handling Remote Memory Corruption_2
HTTP Mozilla Firefox Large GIF File Background Denial of Service
HTTP Mozilla Firefox Unicode Data Remote Denial of Service Vulnerability
HTTP Mozilla Firefox URL Processing Address Bar Spoofing Vulnerability
HTTP Multiple Vendor Browser 'HTMLSelectElement' Denial of Service Vulnerability
HTTP Sun Java System Web Server JSP Source Code Disclosure Vulnerability
Icarus '.icp' File Remote Stack Buffer Overflow Vulnerability
Icarus 'PGN' File Remote Stack Buffer Overflow Vulnerability
Icarus 'PGN' File Remote Stack Buffer Overflow Vulnerability_1
KMPlayer '.srt' File Remote Buffer Overflow Vulnerability
Live for Speed '.mpr' File Processing Buffer Overflow (win_add_user)
Live for Speed '.mpr' File Processing Buffer Overflow (win_exec)
Live for Speed '.mpr' File Processing Buffer Overflow (win_shell_bind)
Microsoft DirectShow (msvidctl.dll) MPEG-2 Memory Corruption (win_exec)
Microsoft DirectShow (msvidctl.dll) MPEG-2 Memory Corruption (win_shell_bind_tcp)
Microsoft DirectShow (msvidctl.dll) MPEG-2 Memory Corruption (win_shell_reverse_tcp)
Microsoft Office Web Components 'msDataSourceObject' Code Execution Vulnerability
Microsoft Office Web Components 'msDataSourceObject' Code Execution Vulnerability_1
Microsoft OWC Spreadsheet msDataSourceObject Memory Corruption (win_exec)
Microsoft OWC Spreadsheet msDataSourceObject Memory Corruption (win_shell_bind_tcp)
Microsoft OWC Spreadsheet msDataSourceObject Memory Corruption (win_shell_reverse_http)
Microsoft OWC Spreadsheet msDataSourceObject Memory Corruption (win_shell_reverse_ord_tcp)
Microsoft OWC Spreadsheet msDataSourceObject Memory Corruption (win_shell_reverse_tcp)
Oracle Secure Enterprise Search 'search_p_groups' Parameter Cross Site Scripting
Oracle Weblogic Server 'console-help.portal' Cross Site Scripting Vulnerability
RealNetworks Helix Server 'RTSP' Remote Denial of Service Vulnerability
RealNetworks Helix Server 'SETUP' Remote Denial of Service Vulnerability
   
 

Copyright idappcom Ltd 2004-2011 All rights reserved