Snort mailing list archives
Re: [Emerging-Sigs] New IE Zero Day
From: yew chuan Ong <yewchuan_23 () yahoo com>
Date: Mon, 17 Sep 2012 07:28:30 -0700 (PDT)
More info here....
http://anubis.iseclab.org/?action=result&task_id=18c249beaa2a439448d22da893ea6c6df&format=html
http://jsunpack.jeek.org/?report=77f232aedd005b0054ec285cbb3781ae89e7196a
https://www.virustotal.com/file/85ad20e922f5e9d497ec06ff8db5af81fbdcbb6e8e63dc426b8faf40d5cc32c6/analysis/
________________________________ From: Will Metcalf <wmetcalf () emergingthreatspro com> To: yew chuan Ong <yewchuan_23 () yahoo com> Cc: "emerging-sigs () lists emergingthreats net" <emerging-sigs () lists emergingthreats net>; "snort-sigs () lists sourceforge net" <snort-sigs () lists sourceforge net> Sent: Monday, September 17, 2012 10:13 PM Subject: Re: [Emerging-Sigs] New IE Zero Day Working on it... Will have "something" in today's set for sure. Regards, Will On Mon, Sep 17, 2012 at 9:13 AM, yew chuan Ong <yewchuan_23 () yahoo com> wrote: Hi,
Let's see how we can craft sig for this!http://blog.vulnhunt.com/index.php/2012/09/17/ie-execcommand-fuction-u http://labs.alienvault.com/labs/index.php/2012/new-internet-explorer-z http://eromang.zataz.com/2012/09/16/zero-day-season-is-really-not-overMetasploithttp://dev.metasploit.com/redmine/projects/framework/repository/revisions/aac41e91fd38f99238971892d61ead4cfbedabb4/entry/modules/exploits/windows/browser/ie_execcommand_uaf.rbRegardsYew Chuan, Ong _______________________________________________ Emerging-sigs mailing list Emerging-sigs () lists emergingthreats net http://lists.emergingthreats.net/mailman/listinfo/emerging-sigs Support Emerging Threats! Subscribe to Emerging Threats Pro http://www.emergingthreatspro.com The ONLY place to get complete premium rulesets for Snort 2.4.0 through Current!
------------------------------------------------------------------------------ Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
_______________________________________________ Snort-sigs mailing list Snort-sigs () lists sourceforge net https://lists.sourceforge.net/lists/listinfo/snort-sigs http://www.snort.org Please visit http://blog.snort.org for the latest news about Snort!
Current thread:
- New IE Zero Day yew chuan Ong (Sep 17)
- Message not available
- Re: [Emerging-Sigs] New IE Zero Day yew chuan Ong (Sep 17)
- Message not available