[Snort-sigs] Snort Subscriber Rules Update 2015-10-21
research at ...435...
Wed Oct 21 16:03:22 EDT 2015
-----BEGIN PGP SIGNED MESSAGE-----
Talos Snort Subscriber Rules Update
Talos has discovered several vulnerabilities affecting NTP.
CVE-2015-7848, CVE-2015-7849, CVE-2015-7850, CVE-2015-7851,
CVE-2015-7852, CVE-2015-7853, CVE-2015-7854, and CVE-2015-7871:
NTP suffers from programming errors that may lead to remote code
Previously released rules will detect attacks targeting these
vulnerabilities and have been updated with the appropriate reference
information. They are included in this release and are identified with
GID 1, SIDs 35831, and 36250 through 36253.
A new rule to detect attacks targeting these vulnerabilities is also
included in this release and is identified with GID 1, SID 36536.
Talos has also added and modified multiple rules in the blacklist,
browser-ie, browser-plugins and server-other rule sets to provide
coverage for emerging threats from these technologies.
For a complete list of new and modified rules please see:
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)
-----END PGP SIGNATURE-----
More information about the Snort-sigs