[Snort-sigs] Snort Subscriber Rules Update 2017-09-06

Research research at sourcefire.com
Wed Sep 6 19:33:32 EDT 2017


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


Talos Snort Subscriber Rules Update

Synopsis:
Talos is aware of a vulnerability affecting Apache Struts.

Details:
CVE-2017-9805:
A coding deficiency exists in Apache Struts that may lead to remote
code execution.

A rule to detect attacks targeting this vulnerability is included in
this release and is identified with GID 1, SID 44315.

Talos has added and modified multiple rules in the browser-firefox,
exploit-kit, file-identify, file-office, file-other, malware-cnc,
os-linux, os-windows and server-webapp rule sets to provide coverage
for emerging threats from these technologies.


For a complete list of new and modified rules please see:

https://www.snort.org/advisories
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=86aK
-----END PGP SIGNATURE-----




More information about the Snort-sigs mailing list