[Snort-sigs] Snort Subscriber Rules Update 2018-04-05

Research research at sourcefire.com
Thu Apr 5 15:15:43 EDT 2018


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


Talos Snort Subscriber Rules Update

Synopsis:
Talos is aware of a vulnerability affecting products from Microsoft
Corporation.

Details:
Microsoft Vulnerability CVE-2018-0986:
A coding deficiency exists in Microsoft Malware Protection Engine that
may lead to remote code execution.

Rules to detect attacks targeting these vulnerabilities are included in
this release and are identified with GID 1, SIDs 46163 through 46164.

Talos has also added and modified multiple rules in the file-other and
server-webapp rule sets to provide coverage for emerging threats from
these technologies.


For a complete list of new and modified rules please see:

https://www.snort.org/advisories
-----BEGIN PGP SIGNATURE-----
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=OHET
-----END PGP SIGNATURE-----



More information about the Snort-sigs mailing list