Snort mailing list archives

Previous By Date Next
Previous By Thread Next

Snort Subscriber Rules Update 2021-08-10

From: Research <research () sourcefire com>
Date: Tue, 10 Aug 2021 17:32:32 GMT
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


Talos Snort Subscriber Rules Update

Synopsis:
Talos is aware of vulnerabilities affecting products from Microsoft
Corporation.

Details:
Microsoft Vulnerability CVE-2021-26432:
A coding deficiency exists in Microsoft Windows Services for NFS ONCRPC
XDR Driver that may lead to remote code execution.

A rule to detect attacks targeting this vulnerability is included in
this release and is identified with GID 1, SID 58003.

Microsoft Vulnerability CVE-2021-34480:
A coding deficiency exists in Microsoft Scripting Engine that may lead
to remote code execution.

Rules to detect attacks targeting these vulnerabilities are included in
this release and are identified with GID 1, SIDs 57998 through 57999.

Microsoft Vulnerability CVE-2021-34535:
A coding deficiency exists in Remote Desktop Client that may lead to
remote code execution.

A rule to detect attacks targeting this vulnerability is included in
this release and is identified with GID 1, SID 57997.


Talos has added and modified multiple rules in the browser-chrome,
browser-ie, malware-cnc, malware-other, os-linux and server-other rule
sets to provide coverage for emerging threats from these technologies.


For a complete list of new and modified rules please see:

https://www.snort.org/advisories
-----BEGIN PGP SIGNATURE-----
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=vYUD
-----END PGP SIGNATURE-----

_______________________________________________
Snort-sigs mailing list
Snort-sigs () lists snort org
https://lists.snort.org/mailman/listinfo/snort-sigs

Please visit http://blog.snort.org for the latest news about Snort!

Please follow these rules: https://snort.org/faq/what-is-the-mailing-list-etiquette

Visit the Snort.org to subscribe to the official Snort ruleset, make sure to stay up to date to catch the most <a 
href=" https://snort.org/downloads/#rule-downloads";>emerging threats</a>!
Previous By Date Next
Previous By Thread Next

Current thread: