Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Snort-Signatures
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[Snort-sigs] Sourcefire VRT Certified Snort Rules Update

from [research] Network Security [Permanent Link]
Subject: [Snort-sigs] Sourcefire VRT Certified Snort Rules Update
Date: Tue, 11 Sep 2007 19:15:34 -0400 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Sourcefire VRT Certified Snort Rules Update

Synopsis:
The Sourcefire VRT is aware of vulnerabilities affecting Microsoft Agent, 
Microsoft Visual Studio and Microsoft MSN Messenger.

Details:
Microsoft Security Bulletin MS07-051:
Microsoft Agent contains a vulnerability that may allow a remote attacker to 
compromise a host. The agent fails to correctly process Uniform Resource 
Locators (URL) which may present the attacker with the opportunity to execute 
code.

A rule to detect attacks targeting this vulnerability is included in this 
release and is identified as SID 12454.

Additionally, SID 1437 may generate events for attacks targeting this 
vulnerability.

Microsoft Security Bulletin MS07-052:
Some versions of Microsoft Visual Studio include a custom version of Crystal 
Reports that contains a vulnerability that may allow an attacker to execute 
code on a host. An attacker may use a specially crafted RPT file to compromise 
an affected system.

Rules to detect attacks targeting this vulnerability are included in this 
release and are identified as SIDs 12455 and 12456.

Microsoft Security Bulletin MS07-054:
MSN Messenger and Windows Live Messenger contain remote code execution 
vulnerabilities that may be exploited by an attacker via a video chat 
invitation.

A rule to detect attacks targeting this vulnerability is included in this 
release and is identified as SID 12457.

For a complete list of new and modified rules please see:

http://www.snort.org/vrt/docs/ruleset_changelogs/changes-2007-09-11.html

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (Cygwin)

iD8DBQFG5wocoFlcG+k7cPwRAijNAJ93tFEXbi6iZ8ZLK0giq/TQTDYAHQCgyIgm
hnLAHakmawdmbKSwrMpT12g=
=XRpK
-----END PGP SIGNATURE-----


-------------------------------------------------------------------------
This SF.net email is sponsored by: Microsoft
Defy all challenges. Microsoft(R) Visual Studio 2005.
http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
_______________________________________________
Snort-sigs mailing list
Snort-sigs@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/snort-sigs
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Snort-sigs] Var that don't work, Thierry CHICH
Next by Date:  [Snort-sigs] new rule for detect Apache P Filter xss, rmkml
Previous by Thread:  [Snort-sigs] Sourcefire VRT Certified Snort Rules Update, research
Next by Thread:  [Snort-sigs] Sourcefire VRT Certified Snort Rules Update, research
Indexes:  [Date] [Thread] [Top] [All Lists]