Snort mailing list archives
Snort Subscriber Rules Update 2018-07-10
From: Research <research () sourcefire com>
Date: Tue, 10 Jul 2018 18:00:14 GMT
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Talos Snort Subscriber Rules Update Synopsis: Talos is aware of vulnerabilities affecting products from Microsoft Corporation. Details: Microsoft Vulnerability CVE-2018-0949: Microsoft Internet Explorer suffers from programming errors that may lead to a security feature bypass. Rules to detect attacks targeting these vulnerabilities are included in this release and are identified with GID 1, SIDs 47091 through 47092. Microsoft Vulnerability CVE-2018-8125: A coding deficiency exists in Microsoft Chakra Scripting Engine that may lead to remote code execution. Rules to detect attacks targeting these vulnerabilities are included in this release and are identified with GID 1, SIDs 47117 through 47118. Microsoft Vulnerability CVE-2018-8242: A coding deficiency exists in Microsoft Scripting Engine that may lead to remote code execution. Previously released rules will detect attacks targeting these vulnerabilities and have been updated with the appropriate reference information. They are also included in this release and are identified with GID 1, SIDs 46548 through 46549. Microsoft Vulnerability CVE-2018-8262: A coding deficiency exists in Microsoft Edge that may lead to remote code execution. Rules to detect attacks targeting these vulnerabilities are included in this release and are identified with GID 1, SIDs 47113 through 47114. Microsoft Vulnerability CVE-2018-8274: A coding deficiency exists in Microsoft Edge that may lead to remote code execution. Rules to detect attacks targeting these vulnerabilities are included in this release and are identified with GID 1, SIDs 47107 through 47108. Microsoft Vulnerability CVE-2018-8275: A coding deficiency exists in Microsoft Edge that may lead to remote code execution. Rules to detect attacks targeting these vulnerabilities are included in this release and are identified with GID 1, SIDs 47100 through 47101. Microsoft Vulnerability CVE-2018-8278: A coding deficiency exists in Microsoft Edge that may lead to spoofing. Rules to detect attacks targeting these vulnerabilities are included in this release and are identified with GID 1, SIDs 47119 through 47120. Microsoft Vulnerability CVE-2018-8279: A coding deficiency exists in Microsoft Edge that may lead to remote code execution. Rules to detect attacks targeting these vulnerabilities are included in this release and are identified with GID 1, SIDs 47098 through 47099. Microsoft Vulnerability CVE-2018-8282: A coding deficiency exists in Microsoft Win32k that may lead to an escalation of privilege. Rules to detect attacks targeting these vulnerabilities are included in this release and are identified with GID 1, SIDs 47096 through 47097. Microsoft Vulnerability CVE-2018-8283: A coding deficiency exists in Microsoft Scripting Engine that may lead to remote code execution. Rules to detect attacks targeting these vulnerabilities are included in this release and are identified with GID 1, SIDs 47121 through 47122. Microsoft Vulnerability CVE-2018-8288: A coding deficiency exists in Microsoft Scripting Engine that may lead to remote code execution. Previously released rules will detect attacks targeting these vulnerabilities and have been updated with the appropriate reference information. They are also included in this release and are identified with GID 1, SIDs 45628 through 45629. Microsoft Vulnerability CVE-2018-8289: Microsoft Edge suffers from programming errors that may lead to information disclosure. Rules to detect attacks targeting these vulnerabilities are included in this release and are identified with GID 1, SIDs 47111 through 47112. Microsoft Vulnerability CVE-2018-8291: A coding deficiency exists in Microsoft Scripting Engine that may lead to remote code execution. Rules to detect attacks targeting these vulnerabilities are included in this release and are identified with GID 1, SIDs 47109 through 47110. Microsoft Vulnerability CVE-2018-8296: A coding deficiency exists in Microsoft Scripting Engine that may lead to remote code execution. Previously released rules will detect attacks targeting these vulnerabilities and have been updated with the appropriate reference information. They are also included in this release and are identified with GID 1, SIDs 45628 through 45629. Microsoft Vulnerability CVE-2018-8297: Microsoft Edge suffers from programming errors that may lead to information disclosure. Previously released rules will detect attacks targeting these vulnerabilities and have been updated with the appropriate reference information. They are also included in this release and are identified with GID 1, SIDs 45121 through 45122. Microsoft Vulnerability CVE-2018-8298: A coding deficiency exists in Microsoft Scripting Engine that may lead to remote code execution. Rules to detect attacks targeting these vulnerabilities are included in this release and are identified with GID 1, SIDs 47102 through 47103. Microsoft Vulnerability CVE-2018-8324: Microsoft Edge suffers from programming errors that may lead to information disclosure. Rules to detect attacks targeting these vulnerabilities are included in this release and are identified with GID 1, SIDs 47141 through 47142. For a complete list of new and modified rules please see: https://www.snort.org/advisories -----BEGIN PGP SIGNATURE----- iQIcBAEBAgAGBQJbRPQsAAoJEPE/nha8pb+t4igQAIizGJm85p5W2kcpgetM/DWN 6h/1fgxW4zoF2ujxZqsjGLpSbr5msM0+ejm8GvWugk2pEY8l0fa0oN2XyOjRfavI lG9XnLQGrDjPG1G8LIC5X03VtXiIqaKQRs+1vT54uRn4HZ+J5qOn3V33W9AJ2FMp 5DxVPchuDGrWsUq+3/i3cJ5JxDkkMJuIZnVpw0gEo5pVm7KtADeht5St3SXetbW5 NdF1fR853dN/eXAX2/sF+2pWJyCVyHeLIgK7mbqqjaKY5Mvk+NplZuhxZGHeZlkk n4qHPhOrQFHLGdE8eBoJXMAfFhZ465LQZkumDIikc8dMXkO2H6ad6yS0xP4FdNW5 P6JvsO17JTFDO735o+2kUWvVwk/ZN5I4xF6BLNFWHoi/EQH4q3yKbwu9gZLKyqCz WXwFKWHRLbeGPcJzGPOacz15KLmxuH8FC0/hdLJ4tshHe2+QV1t+kQU4fpkbrLf1 UQ4TmSFIi0GhQ/ieXQsGT/N0/UDRmSkMl/gTeHkokzaxGCZ2+kMAY4HGeFtunR66 HfrEiJj6mLSWF7PodG8OUY6pN5kpqfgHzlqexsCzIcxHe1pDnkjFG7VbHOGAD6NU WM580KYP+N9ao8oCMJRQgm47IJa0i04NHFFsNnFZtoqumQ2cLErTNCmamN5qB4XH qcG+FilAoNX5IpV+F397 =qpfU -----END PGP SIGNATURE----- _______________________________________________ Snort-sigs mailing list Snort-sigs () lists snort org https://lists.snort.org/mailman/listinfo/snort-sigs Please visit http://blog.snort.org for the latest news about Snort! Please follow these rules: https://snort.org/faq/what-is-the-mailing-list-etiquette Visit the Snort.org to subscribe to the official Snort ruleset, make sure to stay up to date to catch the most <a href=" https://snort.org/downloads/#rule-downloads">emerging threats</a>!
Current thread:
- Snort Subscriber Rules Update 2018-07-10 Research (Jul 10)