socalgal
10-20-2000, 05:18 AM
http://www.networkice.com/html/blackice_agent_patch.html
What:
This is a patch for BlackICE Agent/Sentry Release 2.1.bw.
Why: This release provides the following additional detections:
HTTP UTF8 backtick (issue ID = 2000639): An attacker is attempting to break into a web server using Unicode characters.
IIS system32 command (issue ID = 2002595): An attacker is attempting to break into and execute commands on a web server.
Applicability:
This update is applicable to BlackICE Agents or Sentry systems running Release 2.1.bw that are protecting and monitoring web servers. Without the appropriate patch or work-around, web servers like Microsoft's IIS 4 (or newer) may be susceptible to the attacks listed above.
Content: BlackICE Agent Patch
blackd.exe version 2.1.57
issuelist.csv
What:
This is a patch for BlackICE Agent/Sentry Release 2.1.bw.
Why: This release provides the following additional detections:
HTTP UTF8 backtick (issue ID = 2000639): An attacker is attempting to break into a web server using Unicode characters.
IIS system32 command (issue ID = 2002595): An attacker is attempting to break into and execute commands on a web server.
Applicability:
This update is applicable to BlackICE Agents or Sentry systems running Release 2.1.bw that are protecting and monitoring web servers. Without the appropriate patch or work-around, web servers like Microsoft's IIS 4 (or newer) may be susceptible to the attacks listed above.
Content: BlackICE Agent Patch
blackd.exe version 2.1.57
issuelist.csv