Cisco Talos Blog

November 8, 2011 14:51

Microsoft Security Advisory 2639658

Microsoft recently added a new initiative to its Microsoft Active Protection Program (MAPP), called the Advisory Initiative program, which gives partners up to 96 hours to provide protection for discovered vulnerabilities. Microsoft piloted the program with an advisory release on

November 9, 2010 13:45

Rule release for today, Tuesday November 9th, 2010

Microsoft Security Advisory MS10-087: Microsoft Office contains programming errors that may allow a remote attacker to execute code on an affected system. Microsoft Security Advisory MS10-088: Microsoft Office PowerPoint contains programming errors that may allow a remote attack

October 28, 2010 16:11

Rule Release for Today, Thursday October 28th, 2010

Adobe Shockwave Player vulnerability, see more here: http://www.snort.org/vrt/advisories/2010/10/28/vrt-rules-2010-10-28.html

October 26, 2010 17:30

Rule Release for Today, Tuesday October 26th, 2010

Vulnerabilities in Adobe Shockwave Director and Mozilla Firefox. More details here: http://www.snort.org/vrt/advisories/2010/10/26/vrt-rules-2010-10-26.html

October 12, 2010 13:01

Rule Release for Today, Tuesday October 12th, 2010

Big day for Microsoft patches today. Lots of rules to accompany it. Release notes here: http://www.snort.org/vrt/advisories/2010/10/12/vrt-rules-2010-10-12.html Read them here too: Microsoft Security Advisory MS10-070: The Microsoft .NET Framework discloses enough information

September 27, 2010 17:08

Rule Release for Today, Monday September 27th, 2010

We've added and modified multiple rules in the chat, dns, exploit, ftp, imap, misc, netbios, oracle, policy, pop3, rpc, specific-threats sql, tftp, web-activex, web-client and web-misc rule sets. Get it: http://www.snort.org/vrt/advisories/2010/09/27/vrt-rules-2010-09-27.htm

September 23, 2010 15:23

Rule Release for Today, Thursday September 23rd, 2010

Microsoft .NET Framework Information Disclosure (CVE-2010-3332): The Microsoft .NET Framework discloses enough information in error responses that an attacker is able to decrypt and modify encrypted data. The attacker is also able to forge cookies and obtain application files via

September 21, 2010 17:00

Rule Release for Today, Tuesday September 21st, 2010

Maintenance release this one. Quite a few modifications and additions. Check it out here http://www.snort.org/vrt/advisories/2010/09/21/vrt-rules-2010-09-21.html

September 14, 2010 13:47

Rule Release for Today, Tuesday September 14th, 2010

Microsoft Security Advisory MS10-061: The Microsoft Windows Print Spooler service contains a programming error that may allow a remote attacker to execute code on an affected system. Rules to detect attacks targeting this vulnerability is included in this release and are identif