[Snort-sigs] Sourcefire VRT Certified Snort Rules Update 2014-12-23
research at ...435...
Tue Dec 23 12:29:26 EST 2014
-----BEGIN PGP SIGNED MESSAGE-----
Sourcefire VRT Certified Snort Rules Update
The VRT is aware of a vulnerability affecting libpng.
Vulnerability in libpng:
A coding deficiency exists in the libpng image library that may lead to
remote code execution.
A previously released rule will detect attacks targeting this
vulnerability and has been updated with the appropriate reference
information. It is included in this release and is identified with GID
1, SID 3132.
A new rule to detect this vulnerability is also included in this
release and is identified by GID 1, SID 32889.
The VRT has also added and modified multiple rules in the blacklist,
exploit-kit, file-flash, file-image, file-other, file-pdf,
indicator-compromise, malware-cnc and server-webapp rule sets to
provide coverage for emerging threats from these technologies.
For a complete list of new and modified rules please see:
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)
-----END PGP SIGNATURE-----
More information about the Snort-sigs