[Snort-users] Sasser.b Worm Signature and Information

Mark.Schutzmann at ...10438... Mark.Schutzmann at ...10438...
Sat May 1 20:37:00 EDT 2004


All,

Please review the following links for Snort Signature and details of the
MS04-011 Windows exploit for LSASS:

SANS Analysis and SNORT SIG
http://www.incidents.org/diary.php?date=2004-05-01&isc=e363681119d768565232c3a7b6ae2b7e

LURQ's Detailed Analysis
http://www.lurhq.com/sasser.html

Microsoft's Information:
http://www.microsoft.com/security/incident/sasser.asp

Best Regards,
Mark






More information about the Snort-users mailing list