[Snort-sigs] Snort Subscriber Rules Update 2015-10-21

Research research at ...435...
Wed Oct 21 16:03:22 EDT 2015


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


Talos Snort Subscriber Rules Update

Synopsis:
Talos has discovered several vulnerabilities affecting NTP.

Details:
CVE-2015-7848, CVE-2015-7849, CVE-2015-7850, CVE-2015-7851,
CVE-2015-7852, CVE-2015-7853, CVE-2015-7854, and CVE-2015-7871:
NTP suffers from programming errors that may lead to remote code
execution.

Previously released rules will detect attacks targeting these
vulnerabilities and have been updated with the appropriate reference
information. They are included in this release and are identified with
GID 1, SIDs 35831, and 36250 through 36253.

A new rule to detect attacks targeting these vulnerabilities is also
included in this release and is identified with GID 1, SID 36536.


Talos has also added and modified multiple rules in the blacklist,
browser-ie, browser-plugins and server-other rule sets to provide
coverage for emerging threats from these technologies.


For a complete list of new and modified rules please see:

https://www.snort.org/advisories
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)

iD8DBQFWJ++Ks9U0LCYEKaARAm6kAKC6k/IgoA9H1q8AXei+aVXHpPFxQQCfaPAx
RKiOHiExanBLpD0LeTWY2EM=
=BWfO
-----END PGP SIGNATURE-----





More information about the Snort-sigs mailing list