[Snort-sigs] Sourcefire VRT Certified Snort Rules Update 2014-05-13

Research research at ...435...
Tue May 13 14:40:35 EDT 2014


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


Sourcefire VRT Certified Snort Rules Update

Synopsis:
The Sourcefire VRT is aware of vulnerabilities affecting products from
Microsoft Corporation.

Details:
Microsoft Security Bulletin MS14-022:
A coding deficiency exists in Microsoft SharePoint that may lead to
remote code execution.

A rule to detect attacks targeting this vulnerability is included in
this release and is identified with GID 1, SID 30951.

Microsoft Security Bulletin MS14-029:
Internet Explorer suffers from programming errors that may lead to
remote code execution.

Rules to detect attacks targeting these vulnerabilities are included in
this release and are identified with GID 1, SIDs 30956 through 30957
and 30961 through 30964.

The Sourcefire VRT has also added and modified multiple rules in the
blacklist, browser-ie, browser-other, dos, exploit-kit,
file-multimedia, malware-backdoor, malware-cnc, malware-other,
server-apache, server-mail and server-webapp rule sets to provide
coverage for emerging threats from these technologies.

For a complete list of new and modified rules please see:

http://www.snort.org/vrt/docs/ruleset_changelogs/changes-2014-05-13.html
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)

iD8DBQFTcmcnQLjqI2QiHVMRAlBxAJwJDxF6ox9zJ00oJPJAsN9Lhzvz/ACdECfQ
g2nA6Cnvtb2LWA09WLY9TU0=
=SJrr
-----END PGP SIGNATURE-----





More information about the Snort-sigs mailing list