Network Sensor 22.35 includes 15 new events including detection of attacks against SMB, SQL, Mozilla and multiple backdoors. Also included in this XPU are 10 security content updates to existing signatures and 101 new blocking responses.
Checks:
| Risk | VulnID | Check Name | Category |
| High | 2358 | SMB_Empty_Password_Failed | Suspicious Activity |
| High | 8359 | SQL_MultipleXP_Overflow | Suspicious Activity |
| High | 13153 | MySQL_User_Password_Overflow | Unauthorized Access Attempt |
| High | 13405 | HTML_IRC_URL_Overflow | Unauthorized Access Attempt |
| High | 15119 | WoW23_TCP_Response | Unauthorized Access Attempt |
| High | 16581 | Image_EMF_Integer_Overflow | Unauthorized Access Attempt |
| High | 17320 | SMB_Abel_Backdoor | Unauthorized Access Attempt |
| High | 17370 | Email_VCF_Mozilla_Overflow | Suspicious Activity |
| High | 17378 | HTTP_Mozilla_Nonascii_URL_BO | Suspicious Activity |
| High | 17515 | POP_YPOPs_Overflow | Unauthorized Access Attempt |
| High | 17528 | WarTrojan_TCP_Request | Unauthorized Access Attempt |
| Medium | 17810 | HTTP_Html_In_Ref | Suspicious Activity |
| High | 17889 | HTTP_IE_IFrame_BO | Unauthorized Access Attempt |
| High | 17897 | IPv6_Teredo | Suspicious Activity |
| Low | 17970 | Image_JPEG_Malformed | Unauthorized Access Attempt |
If you are an existing customer or partner, and you wish to download X-Press Updates from our download center, click here.