Sourcefire VRT Certified Snort Rules Update 2010-03-23

[Research <research () sourcefire com>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


Sourcefire VRT Certified Snort Rules Update

Synopsis:
This release adds and modifies rules in several categories and contains
detection for attacks targeting a vulnerability in Apple Safari.

Details:
Apple Safari RCE (CVE-2010-0049):
Apple Safari contains a programming error that may allow a remote
atttacker to execute code on an affected system. The issue presents
itself when the browser fails to properly process certain HTML elements
concerning RTL text.

A rule to detect attacks targeting this vulnerability is included in
this release and is identified with GID 1, SID 16492.

Additionally, as a result of ongoing research, the Sourcefire VRT has
added multiple rules to the specific-threats and netbios rule sets to
provide coverage for emerging threats from these technologies.

For a complete list of new and modified rules please see:

http://www.snort.org/vrt/docs/ruleset_changelogs/changes-2010-03-23.html
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.6 (GNU/Linux)

iD8DBQFLqRGRQcQOxItLLaMRArpSAJ4vRPb8I/RxikubhwCSAsj+E2PsngCfW1gs
KU0DJr6Ic0eNCJPi9yDpzGM=
=5PKI
-----END PGP SIGNATURE-----


------------------------------------------------------------------------------
Download Intel® Parallel Studio Eval
Try the new software tools for yourself. Speed compiling, find bugs
proactively, and fine-tune applications for parallel performance.
See why Intel Parallel Studio got high marks during beta.
http://p.sf.net/sfu/intel-sw-dev
_______________________________________________
Snort-sigs mailing list
Snort-sigs () lists sourceforge net
https://lists.sourceforge.net/lists/listinfo/snort-sigs