[Snort-sigs] Sourcefire VRT Certified Rules Update

Sourcefire VRT research at ...435...
Fri Feb 9 16:08:15 EST 2007


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Sourcefire VRT Certified Rules Update

Synopsis:
The Sourcefire Vulnerability Research Team (VRT) is aware of
vulnerabilities affecting the Squid Proxy Server and the Microsoft
Windows Operating System.

Details:
Squid Proxy Server CVE-2007-0247:
The Squid Proxy Server is prone to a Denial of Service (DoS) condition
when handling malformed directory listing responses from remote FTP
servers.

A rule to detect attacks targeting this vulnerability is included in
this release and is identified as SID 10135.

Microsoft Security Bulletin MS06-032:
The Microsoft Windows operating system is prone to a Denial of Service
(DoS) condition that is caused by the improper handling of TCP/IP packets.

A shared object rule to detect attacks targeting this vulnerability is
included in this release and is identified as GID 3 SID 10127.

Multiple rules have been added and modified to provide coverage for
other threats.


For a complete list of new and modified rules please see:

http://www.snort.org/vrt/docs/ruleset_changelogs/changes-2007-02-09.html
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.4 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFFzOK/Mpm0ve0NhMcRAtj5AJ9RPNjXzCZ4zIt0oJALuk1fVJn62gCdE8Sv
atjur1BbxPlmo6aYMqz8CcU=
=KWF7
-----END PGP SIGNATURE-----




More information about the Snort-sigs mailing list