Snort mailing list archives

Previous By Date Next
Previous By Thread Next

Sourcefire VRT Certified Snort Rules Update 2014-04-08

From: Research <research () sourcefire com>
Date: Tue, 8 Apr 2014 16:33:45 -0400 (EDT)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


Sourcefire VRT Certified Snort Rules Update

Synopsis:
The Sourcefire VRT is aware of vulnerabilities affecting OpenSSL and
products from Microsoft Corporation.

Details:
OpenSSL TLS heartbeat read overrun CVE-2014-0160:
A programming error in the OpenSSL heartbeat extension exists that may
lead to information disclosure.

Rules to detect attacks targeting this vulnerability are included in
this release and are identified with GID 1, SIDs 30510 through 30517.

Microsoft Security Bulletin MS14-018:
Internet Explorer suffers from programming errors that may lead to
remote code execution.

Rules to detect attacks targeting these vulnerabilities are included in
this release and are identified with GID 1, SIDs 30497 through 30502,
and 30508 through 30509.

Previously released rules will detect attacks targeting these
vulnerabilities and have been updated with the appropriate reference
information. They are included in this release and are identified with
GID 1, SIDs 24974 through 24975.


The Sourcefire VRT has also added and modified multiple rules in the
blacklist, browser-firefox, browser-ie, exploit-kit, file-office and
server-other rule sets to provide coverage for emerging threats from
these technologies.

For a complete list of new and modified rules please see:

http://www.snort.org/vrt/docs/ruleset_changelogs/changes-2014-04-08.html
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)

iD8DBQFTRF0tQLjqI2QiHVMRAghcAKCUph/HObYl6j4sy01R09CWfbQtegCcCYs/
un4WcspmabrJWZqoWXquhQo=
=BEVc
-----END PGP SIGNATURE-----


------------------------------------------------------------------------------
Put Bad Developers to Shame
Dominate Development with Jenkins Continuous Integration
Continuously Automate Build, Test & Deployment 
Start a new project now. Try Jenkins in the cloud.
http://p.sf.net/sfu/13600_Cloudbees
_______________________________________________
Snort-sigs mailing list
Snort-sigs () lists sourceforge net
https://lists.sourceforge.net/lists/listinfo/snort-sigs
http://www.snort.org


Please visit http://blog.snort.org for the latest news about Snort!
Previous By Date Next
Previous By Thread Next

Current thread: