Web-activex, Specific-threats and Chat Additions, and Performance Enhancements for MS08-067 Rules
February 3rd, 2009
As a result of ongoing research, the Sourcefire VRT has added multiple rules to the web-activex, specific-threats and chat rule sets to provide coverage for emerging threats from these technologies.
As a result of ongoing research, the Sourcefire VRT has added multiple rules to the web-activex, specific-threats and chat rule sets to provide coverage for emerging threats from these technologies.
Microsoft Security Advisory MS08-067:
After continued research into a vulnerability affecting the Microsoft implementation of DCE/RPC, the Sourcefire VRT has made improvements to the rules that detect attacks targeting this vulnerability in order to enhance performance.
The updated rules to detect attacks targeting this vulnerability are included in this release and are identified with GID 3, SIDs 14773 through 14985.