Snort mailing list archives
Re: CVE-2016-0728
From: "Joel Esler (jesler)" <jesler () cisco com>
Date: Thu, 21 Jan 2016 12:07:24 +0000
I didn't follow up yesterday afternoon, but I looks like we will release some detection. Sent from my iPhone On Jan 21, 2016, at 2:20 AM, Elliot Anderson <new.http.451 () gmail com<mailto:new.http.451 () gmail com>> wrote: Hey so seems I wasn't:) you will release 37435-37438 to cover this, right? Thanks, Elliot On 20 Jan 2016, at 19:00, Joel Esler (jesler) <jesler () cisco com<mailto:jesler () cisco com>> wrote: We still need to investigate, but you are probably right. :) -- Joel Esler Manager, Threat Intelligence Team & Open Source Talos Group http://www.talosintel.com<http://www.talosintel.com/> On Jan 20, 2016, at 11:54 AM, Elliot Anderson <new.http.451 () gmail com<mailto:new.http.451 () gmail com>> wrote: Just reliazed that this requires local access for exploitation, so probably thats something not covered by network sigs. Elliot. On 20 Jan 2016, at 18:52, Joel Esler (jesler) <jesler () cisco com<mailto:jesler () cisco com>> wrote: Elliot, Let me take a look.. -- Joel Esler Manager, Threat Intelligence Team & Open Source Talos Group http://www.talosintel.com<http://www.talosintel.com/> On Jan 20, 2016, at 2:16 AM, Elliot Anderson <new.http.451 () gmail com<mailto:new.http.451 () gmail com>> wrote: Any updates if there will be some coverage released soon by TALOS covering this? Thanks, Kestutis ------------------------------------------------------------------------------ Site24x7 APM Insight: Get Deep Visibility into Application Performance APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month Monitor end-to-end web transactions and take corrective actions now Troubleshoot faster and improve end-user experience. Signup Now! http://pubads.g.doubleclick.net/gampad/clk?id=267308311&iu=/4140 _______________________________________________ Snort-sigs mailing list Snort-sigs () lists sourceforge net<mailto:Snort-sigs () lists sourceforge net> https://lists.sourceforge.net/lists/listinfo/snort-sigs http://www.snort.org<http://www.snort.org/> Please visit http://blog.snort.org<http://blog.snort.org/> for the latest news about Snort!
------------------------------------------------------------------------------ Site24x7 APM Insight: Get Deep Visibility into Application Performance APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month Monitor end-to-end web transactions and take corrective actions now Troubleshoot faster and improve end-user experience. Signup Now! http://pubads.g.doubleclick.net/gampad/clk?id=267308311&iu=/4140
_______________________________________________ Snort-sigs mailing list Snort-sigs () lists sourceforge net https://lists.sourceforge.net/lists/listinfo/snort-sigs http://www.snort.org Please visit http://blog.snort.org for the latest news about Snort!
Current thread:
- CVE-2016-0728 Elliot Anderson (Jan 19)
- Re: CVE-2016-0728 Joel Esler (jesler) (Jan 20)
- Re: CVE-2016-0728 Elliot Anderson (Jan 20)
- Re: CVE-2016-0728 Joel Esler (jesler) (Jan 20)
- Re: CVE-2016-0728 Elliot Anderson (Jan 20)
- Re: CVE-2016-0728 Joel Esler (jesler) (Jan 21)
- Re: CVE-2016-0728 Elliot Anderson (Jan 20)
- Re: CVE-2016-0728 Joel Esler (jesler) (Jan 20)