[Snort-sigs] Sourcefire VRT Certified Rules Update

Sourcefire VRT research at ...435...
Fri Apr 27 15:39:43 EDT 2007


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Sourcefire VRT Certified Rules Update

Synopsis:
The Sourcefire VRT is aware of vulnerabilities affecting IBM Lotus Domino
servers and hosts using Novell GroupWise WebAccess.


Details:
IBM Lotus Domino Denial of Service (CVE-2007-1675):
IBM Lotus Domino servers are prone to a Denial of Service (DoS) attack via a
buffer overflow condition in the CRAM-MD5 authentication module.

A rule to detect attacks targeting this vulnerability is included in this
release and is identified as SID 11004.

Novell GroupWise WebAccess buffer overflow (CVE-2007-2171):
The Novell GroupWise WebAccess application is vulnerable to a buffer
overflow condition that may allow a remote attacker to execute code on a
vulnerable system.

A rule to detect attacks targeting this vulnerability is included in this
release and is identified as SID 10998.

For a complete list of new and modified rules please see:

http://www.snort.org/vrt/docs/ruleset_changelogs/changes-2007-04-26.html

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (Cygwin)

iD8DBQFGMk4coFlcG+k7cPwRAjW1AKDLQsEmJ62cEFOwxwnoVAkBbiDrUwCgzr13
5aXrptPooGT044kTl9Vaz7k=
=JrCk
-----END PGP SIGNATURE-----




More information about the Snort-sigs mailing list