[Snort-sigs] Sourcefire VRT Certified Snort Rules Update 2011-01-06

Research research at ...435...
Thu Jan 6 13:51:25 EST 2011


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


Sourcefire VRT Certified Snort Rules Update

Synopsis:
This release adds and modifies rules in several categories.

Details:
As a result of ongoing research, the Sourcefire VRT has added and
modified multiple rules in the blacklist, specific-threats and
web-client rule sets to provide coverage for emerging threats from
these technologies.

Microsoft Graphics Rendering Engine RCE (CVE-2010-3970):
The Microsoft Graphics Rendering Engine contains a programming error
that may allow a remote attacker to execute code on an affected system.

A rule to detect attacks targeting this vulnerability is included in
this release and is identified with GID 1, SID 18265.

For a complete list of new and modified rules please see:

http://www.snort.org/vrt/docs/ruleset_changelogs/changes-2011-01-06.html
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.6 (GNU/Linux)

iD8DBQFNJg8tQcQOxItLLaMRAoEiAJ4qwv+Hj3xMreX3Nnbje31bZA7vtwCfckDj
3XhR4wa9n+hTrsmafIMmWSU=
=lkMT
-----END PGP SIGNATURE-----





More information about the Snort-sigs mailing list