[Snort-sigs] CVE-2016-1287

Joel Esler (jesler) jesler at ...3865...
Thu Feb 11 17:02:17 EST 2016

It’s been available as a Shared Object rule to subscribers since late November, registered users (as a Shared Object rule) 30 days after that (late December), in the balanced (default to on) policy.   We just moved it from Shared Object to open yesterday.

As far as “does it cover IKEv1”, yes, it does.   We’ll get the msg updated.  Thanks.

Joel Esler
Manager, Talos Group

On Feb 11, 2016, at 3:12 PM, Elliot Anderson <new.http.451 at ...2420...<mailto:new.http.451 at ...2420...>> wrote:

Thanks Joel,

can you clarify how is it we have coverage for 2016 February 10 16:00  GMT published CVE since November? Also does it cover IKEv1 as well (as the sig 36903 naming suggest it is IKEv2).


On 11 Feb 2016, at 19:58, Joel Esler (jesler) <jesler at ...3865...<mailto:jesler at ...3865...>> wrote:

Coverage has been out for this vulnerability since November.

Joel Esler
Manager, Talos Group

On Feb 11, 2016, at 10:27 AM, Elliot Anderson <new.http.451 at ...2420...<mailto:new.http.451 at ...2420...>> wrote:

Hello SF,

anything for coverage on CVE-2016-1287 with the upcomming SEU rollout?

Site24x7 APM Insight: Get Deep Visibility into Application Performance
APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month
Monitor end-to-end web transactions and take corrective actions now
Troubleshoot faster and improve end-user experience. Signup Now!
Snort-sigs mailing list
Snort-sigs at lists.sourceforge.net<mailto:Snort-sigs at lists.sourceforge.net>

Please visit http://blog.snort.org<http://blog.snort.org/> for the latest news about Snort!

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.snort.org/pipermail/snort-sigs/attachments/20160211/90fbc12f/attachment.html>

More information about the Snort-sigs mailing list