[Snort-sigs] Sourcefire VRT Certified Snort Rules Update 2014-12-11

Research research at ...435...
Thu Dec 11 13:51:54 EST 2014


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


Sourcefire VRT Certified Snort Rules Update

Synopsis:
The VRT is aware of a vulnerability affecting Microsoft Internet
Explorer.

Details:
CVE-2014-8967:
Microsoft Internet Explorer suffers from a programming error that may
lead to remote code execution.

Rules to detect attacks targeting these vulnerabilities are included in
this release and are identified with GID 1, SIDs 32777 through 32778.

The VRT has also added and modified multiple rules in the blacklist,
browser-ie, browser-plugins, file-flash, file-multimedia, file-office,
file-other, file-pdf, malware-cnc, malware-other, os-windows,
policy-other, server-iis, server-other and sql rule sets to provide
coverage for emerging threats from these technologies.

For a complete list of new and modified rules please see:

https://www.snort.org/advisories
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)

iD8DBQFUiefKQLjqI2QiHVMRAoe3AJ91qGDcxBkJmaXUXL4M7Bbc4Z6eLgCeODnK
cExN18rYyxVC/e9oijghbwo=
=hLVf
-----END PGP SIGNATURE-----





More information about the Snort-sigs mailing list