[Snort-sigs] Sourcefire VRT Certified Snort Rules Update 2013-07-09

Research research at ...435...
Tue Jul 9 13:38:18 EDT 2013


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


Sourcefire VRT Certified Snort Rules Update

Synopsis:
The Sourcefire VRT is aware of vulnerabilities affecting products from
Microsoft Corporation.

Details:
Microsoft Security Advisory MS13-052:
Programming errors in the .NET Framework and Silverlight may lead to
remote code execution.

Rules to detect attacks targeting these vulnerabilities are included in
this release and are identified with GID 1, SIDs 27136 and 27139.

Microsoft Security Advisory MS13-055:
Internet Explorer suffers from programming errors that may lead to
remote code execution.

Rules to detect attacks targeting these vulnerabilities are included in
this release and are identified with GID 1, SIDs 27126 through 27135,
27137 through 27138, 27147 through 27154, and 27156 through 27157.

The Sourcefire VRT has also added and modified multiple rules in the
blacklist, browser-ie, browser-plugins, deleted, dos, exploit-kit,
file-multimedia, file-office, file-other, file-pdf, malware-backdoor,
malware-cnc, malware-other, os-mobile, os-windows, protocol-ftp,
protocol-tftp and server-webapp rule sets to provide coverage for
emerging threats from these technologies.

For a complete list of new and modified rules please see:

http://www.snort.org/vrt/docs/ruleset_changelogs/changes-2013-07-09.html
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)

iD4DBQFR3EqLQLjqI2QiHVMRApH7AJ0e4RHf7mwcDIlGo1z0T8NCMnq6MACYk/aP
irLk1hGxExVegzjZttMViQ==
=CBJh
-----END PGP SIGNATURE-----





More information about the Snort-sigs mailing list