Wednesday, April 6, 2011

VRT Rule Update for 04/06/2011 and Shared Object rules for 2.9.0.5

Just released, is a rule release for today from the VRT. In this release we introduce 2 new rules and make modifications to 19 more.

In VRT's rule release:
The Sourcefire VRT has added and modified multiple rules in the dns,
mysql, specific-threats, sql and web-client rule sets to provide
coverage for emerging threats from these technologies.
The highlight of this rule pack is a Specific-Threats rule that further addresses the recent Lizamoon attacks. The SID in question is 18604.  For more information on this attack, please see this VRT Blog Entry.

Support for the upcoming release of Snort 2.9.0.5 is included in this rule pack as well.  When Snort 2.9.0.5 is released, subscribers will have the coverage of the latest detection functionality and ruleset.

In order to subscribe now to the VRT's newest rule detection functionality, you can subscribe for as low as $29 US dollars a year for personal users, be sure and see our business pricing as well at http://www.snort.org/store. Make sure and stay up to date to catch the most emerging threats!