LowProventia Network IPS, Proventia Desktop, RealSecure Network, RealSecure Server Sensor, Proventia-G 1.1 and earlier, Proventia Network IDS, Proventia Network MFS, IBM Security Server Protection for Windows, Proventia Server IPS for Linux technology, Virtual Server Protection for Vmware:
This signature triggers when an Embedded OpenType Font is detected and when the compression flag is set. This is not indicative of an attack, but an attack could be obfuscated in a compressed font file.
Low
Proventia Network IPS: XPU 29.070, Proventia Desktop: 2410, RealSecure Network: XPU 29.070, RealSecure Server Sensor: XPU 29.070, Proventia-G 1.1 and earlier: XPU 29.070, Proventia Network IDS: XPU 29.070, Proventia Network MFS: XPU 29.070, IBM Security Server Protection for Windows: 2.1.14.2410, IBM Security Server Protection for Windows: 2.0.300.2410, IBM Security Server Protection for Windows: 1.0.914.2410, Proventia Server IPS for Linux technology: 29.070, Virtual Server Protection for Vmware: 1.0
IBM AIX, WindRiver BSDOS, SGI IRIX, Linux Kernel, Sun Solaris, IBM OS2, Microsoft Windows 95, Data General DG/UX, Microsoft Windows NT: 4.0, Microsoft Windows 98, SCO SCO Unix, Microsoft Windows 98SE, Microsoft Windows 2000, Microsoft Windows Me, Compaq Tru64, Microsoft Windows XP, Apple Mac OS, Microsoft Windows 2003 Server
Protocol Signature
A EOT (Embedded OpenType File) file has been detected.
This audit is for informational purposes only.
ISS X-Force
EOT file detected
http://www.iss.net/security_center/static/50927.php