[Snort-sigs] Sourcefire VRT Certified Snort Rules Update

research at ...435... research at ...435...
Tue Jan 20 14:07:30 EST 2009


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Sourcefire VRT Certified Snort Rules Update

Synopsis:
The Sourcefire VRT has added multiple rules to the web-activex,
specific-threats, web-client and multimedia rule sets to provide
coverage for emerging threats from these technologies.

Details:
Security Fix - This module pack resolves a potential recursive
evaluation DoS condition in SO rules that utilize the built-in content
match API function. Sourcefire recommends installing this release as
soon as possible if high latency is encountered when dealing with large
SMB file transfers.

As a result of ongoing research, the Sourcefire VRT has added multiple
rules to the web-activex, specific-threats, web-client and multimedia
rule sets to provide coverage for emerging threats from these
technologies.

For a complete list of new and modified rules please see:

http://www.snort.org/vrt/docs/ruleset_changelogs/changes-2009-01-20.html
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFJdhFx8GAEVQeoGrMRAnsiAJ4+xGUXo0nOX6h+XrKS3YNUjJTRRQCgvBXF
NrT461jTSKI0wUCJFL6PNqk=
=9YaH
-----END PGP SIGNATURE-----




More information about the Snort-sigs mailing list