[Snort-sigs] content - security bulletin

Matthew Watchinski mwatchinski at ...435...
Fri Jun 22 10:21:40 EDT 2007


What kind of guidance are you looking for?

-matt

Julio wrote:
> Hi All,
> 
>  
> 
> My question is based on the latest security bulletin released by Microsoft
> and snort rules
> 
>  
> 
> http://www.microsoft.com/technet/security/Bulletin/MS07-031.mspx 
> 
>  
> 
> I am trying to create a rule based on the 
> 
>  
> 
> Vulnerability in the Windows Schannel Security Package Could Allow Remote
> Code Execution (935840)
> 
> Published: June 12, 2007
> 
>  
> 
> I have few problems putting together the rules content 
> 
>  
> 
> Can someone give me some guidance 
> 
>  
> 
> Thanks,
> 
> Julio
> 
>  
> 
>  
> 
> 
> 
> 
> ------------------------------------------------------------------------
> 
> -------------------------------------------------------------------------
> This SF.net email is sponsored by DB2 Express
> Download DB2 Express C - the FREE version of DB2 express and take
> control of your XML. No limits. Just data. Click to get it now.
> http://sourceforge.net/powerbar/db2/
> 
> 
> ------------------------------------------------------------------------
> 
> _______________________________________________
> Snort-sigs mailing list
> Snort-sigs at lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/snort-sigs





More information about the Snort-sigs mailing list