Snort mailing list archives

Previous By Date Next
Previous By Thread Next

Snort Subscriber Rules Update 2021-11-23

From: Research <research () sourcefire com>
Date: Tue, 23 Nov 2021 18:09:53 GMT
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


Talos Snort Subscriber Rules Update

Synopsis:
This release adds and modifies rules in several categories.

Details:
In this release a number of rules have been added to the security
policy as part of ongoing policy rebalancing efforts.

Microsoft Vulnerability CVE-2021-41379:
A coding deficiency exists in Microsoft Windows Installer that may lead
to an escalation of privilege.

Rules to detect attacks targeting these vulnerabilities are included in
this release and are identified with GID 1, SIDs 58635 through 58636. 

Talos also has added and modified multiple rules in the browser-chrome,
browser-firefox, browser-plugins, file-java, file-other, netbios,
os-mobile, os-other, os-solaris, os-windows, policy-other,
protocol-imap, protocol-nntp, protocol-pop, protocol-rpc,
protocol-scada, protocol-services, protocol-snmp, server-apache,
server-iis, server-mysql, server-oracle, server-other and server-webapp
rule sets to provide coverage for emerging threats from these
technologies.


For a complete list of new and modified rules please see:

https://www.snort.org/advisories
-----BEGIN PGP SIGNATURE-----
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=z5Mv
-----END PGP SIGNATURE-----

_______________________________________________
Snort-sigs mailing list
Snort-sigs () lists snort org
https://lists.snort.org/mailman/listinfo/snort-sigs

Please visit http://blog.snort.org for the latest news about Snort!

Please follow these rules: https://snort.org/faq/what-is-the-mailing-list-etiquette

Visit the Snort.org to subscribe to the official Snort ruleset, make sure to stay up to date to catch the most <a 
href=" https://snort.org/downloads/#rule-downloads";>emerging threats</a>!
Previous By Date Next
Previous By Thread Next

Current thread: