Monday, December 31, 2012

Sourcefire VRT Certified Snort Rules Update for 12/31/2012, CVE-2012-4792

Just released: Sourcefire VRT Certified Snort Rules Update for 12/31/2012

We welcome the introduction of the newest rule release for today from the VRT. In this release we introduced 16 new rules and made modifications to 3 additional rules.

The VRT would like to thank Avery Tarasov for his work on sid: 25119

There were no changes made to the snort.conf in this release.

In VRT's rule release:
Microsoft Security Advisory CVE-2012-4792:
Microsoft Internet Explorer versions 6, 7 and 8 contain a programming
error that may allow a remote attacker to execute code on an affected

Rules to detect attacks targeting this vulnerability are included in
this release and are identified with GID 1, SIDs 25125 through 25134.

In order to subscribe now to the VRT's newest rule detection functionality, you can subscribe for as low as $29 US dollars a year for personal users, be sure and see our business pricing as well at Make sure and stay up to date to catch the most emerging threats!