Snort mailing list archives

Previous By Date Next
Previous By Thread Next

Snort Subscriber Rules Update 2020-01-14

From: Research <research () sourcefire com>
Date: Tue, 14 Jan 2020 18:06:39 GMT
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


Talos Snort Subscriber Rules Update

Synopsis:
Talos is aware of vulnerabilities affecting products from Microsoft
Corporation.

Details:
Microsoft Vulnerability CVE-2020-0601:
A coding deficiency exists in Microsoft Windows CryptoAPI that may lead
to spoofing.

Rules to detect attacks targeting these vulnerabilities are included in
this release and are identified with GID 1, SIDs 52593 through 52596.

Microsoft Vulnerability CVE-2020-0634:
A coding deficiency exists in Microsoft Windows Common Log File System
Driver that may lead to an escalation of privilege.

Rules to detect attacks targeting these vulnerabilities are included in
this release and are identified with GID 1, SIDs 52604 through 52605.


Talos also has added and modified multiple rules in the app-detect,
browser-chrome, browser-ie, browser-webkit, exploit-kit, malware-cnc
and server-webapp rule sets to provide coverage for emerging threats
from these technologies.


For a complete list of new and modified rules please see:

https://www.snort.org/advisories
-----BEGIN PGP SIGNATURE-----
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=vd0T
-----END PGP SIGNATURE-----

_______________________________________________
Snort-sigs mailing list
Snort-sigs () lists snort org
https://lists.snort.org/mailman/listinfo/snort-sigs

Please visit http://blog.snort.org for the latest news about Snort!

Please follow these rules: https://snort.org/faq/what-is-the-mailing-list-etiquette

Visit the Snort.org to subscribe to the official Snort ruleset, make sure to stay up to date to catch the most <a 
href=" https://snort.org/downloads/#rule-downloads";>emerging threats</a>!
Previous By Date Next
Previous By Thread Next

Current thread: