[Snort-sigs] Sourcefire VRT Certified Snort Rules Update

research at ...435... research at ...435...
Fri Oct 26 16:52:14 EDT 2007


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Sourcefire VRT Certified Snort Rules Update

Synopsis:
The Sourcefire VRT has expanded coverage for Microsoft Security Bulletin MS07-057.

Details:
Microsoft Security Bulletin MS07-057:
The URL handling in Windows XP and Windows Server 2003, with Windows Internet Explorer 7 installed, allows remote attackers to execute arbitrary programs via invalid "%" sequences.

The Sourcefire VRT has updated coverage to detect attacks targeting this vulnerability with additional rules. These rules are included in this release and are identified as SIDs 12687 and 12688.

For a complete list of new and modified rules please see:

http://www.snort.org/vrt/docs/ruleset_changelogs/changes-2007-10-26.html

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (Cygwin)

iD8DBQFHIkCRoFlcG+k7cPwRAuEFAJ9iF+w3ey/b/rbJmnCnha0PNJgDCgCeP19c
dwz/tpLvToAU97NZEhiw5T4=
=R+dz
-----END PGP SIGNATURE-----





More information about the Snort-sigs mailing list