Rule:--Sid:2541--Summary:This event is generated when an attempt is made to exploit a knownvulnerability in the Microsoft implementation of SSL Version 3.--Impact:Denial of Service (DoS).--Detailed Information:A vulnerability exists in the handling of SSL Version 3 requests thatcan be manipulated to cause a DoS condition in various software implementations used on Microsoft operating systems.The condition exists because of poor error handling routines in theMicrosoft Secure Sockets Layer (SSL) library. SSL requests containing aninvalid field, sent to vulnerable systems can cause the affected host to stop handling any further requests.--Affected Systems:	Microsoft Windows 2000, 2003 and XP systems using SSL--Attack Scenarios:An attcker needs to make an SSL request to an affected system thatcontains an invalid field.--Ease of Attack:Simple.--False Positives:None known.--False Negatives:None known.--Corrective Action:Apply the appropriate vendor supplied patches--Contributors:Sourcefire Vulnerability Research TeamMatt Watchinski <mwatchinski@sourcefire.com>Nigel Houghton <nigel.houghton@sourcefire.com>--Additional References:Microsoft:http://www.microsoft.com/security/encyclopedia/details.aspx?name=Win32/Gaobothttp://www.microsoft.com/security/encyclopedia/details.aspx?name=Win32/Sasserhttp://www.microsoft.com/security/encyclopedia/details.aspx?name=Win32/Korgohttp://www.microsoft.com/security/encyclopedia/details.aspx?name=win32/rbothttp://www.microsoft.com/security/encyclopedia/details.aspx?name=Win32/Sdbothttp://www.microsoft.com/security/encyclopedia/details.aspx?name=Win32/Mytobhttp://www.microsoft.com/security/encyclopedia/details.aspx?name=Win32/Spybothttp://www.microsoft.com/security/encyclopedia/details.aspx?name=Win32/Wootbot--