[Emerging-updates] Daily Ruleset Update Summary 02/12/2013

Will Metcalf wmetcalf at emergingthreatspro.com
Tue Feb 12 14:05:45 HAST 2013


 [***]          Summary:          [***]

 5 new Open rules. 22 new Pro rules (5/17). MS Tuesday Coverage, CoolEK
updates, etc.

MS Tuesday Summary
http://www.emergingthreats.net/2013/02/12/febuary-2013-microsoft-tuesday-coverage/

 [+++]          Added rules:          [+++]

  Open:
  2016404 - ET INFO MPEG Download Over HTTP (1) (info.rules)
  2016405 - ET CURRENT_EVENTS CoolEK - PDF Exploit - Feb 12 2013
(current_events.rules)
  2016406 - ET CURRENT_EVENTS CoolEK landing applet plus class Feb 12 2013
(current_events.rules)
  2016407 - ET CURRENT_EVENTS Cool Java Exploit Recent Jar (1)
(current_events.rules)
  2016408 - ET CURRENT_EVENTS CoolEK Payload Download (4)
(current_events.rules)

  Pro:
  2806004 - ETPRO WEB_CLIENT Microsoft Internet Explorer SetCapture Use
After Free (web_client.rules)
  2806005 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free
(web_client.rules)
  2806006 - ETPRO WEB_CLIENT Internet Explorer CMarkUP Use After Free
CVE-2013-0020 (web_client.rules)
  2806007 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free
(web_client.rules)
  2806008 - ETPRO WEB_CLIENT Microsoft Internet Explorer Use-After-Free
(web_client.rules)
  2806009 - ETPRO WEB_CLIENT Microsoft Internet Explorer SLayoutRun Use
After Free (web_client.rules)
  2806010 - ETPRO WEB_CLIENT Microsoft Internet Explorer CPasteCommand Use
After Free 1 (web_client.rules)
  2806011 - ETPRO WEB_CLIENT Microsoft Internet Explorer CPasteCommand Use
After Free 2 (web_client.rules)
  2806012 - ETPRO WEB_CLIENT Microsoft Internet Explorer CPasteCommand Use
After Free 1 (web_client.rules)
  2806013 - ETPRO WEB_CLIENT Microsoft Internet Explorer CPasteCommand Use
After Free 2 (web_client.rules)
  2806014 - ETPRO WEB_CLIENT Microsoft Internet Explorer CObjectElement Use
After Free (web_client.rules)
  2806015 - ETPRO WEB_CLIENT Microsoft Internet Explorer CHTML Use After
Free (web_client.rules)
  2806016 - ETPRO WEB_CLIENT DirectShow MPEG Buffer Overlflow CVE-2013-0077
(web_client.rules)
  2806017 - ETPRO WEB_CLIENT Microsoft Rich Text File download with
vulnerable ActiveX control TabStrip (web_client.rules)
  2806018 - ETPRO TROJAN Win32/Vundo.gen!AY Checkin (trojan.rules)
  2806019 - ETPRO TROJAN Win32/Zeprox.B /
Trojan-Ransom.Win32.PornoAsset.btgg Checkin (trojan.rules)
  2806020 - ETPRO WEB_CLIENT Internet Explorer CMarkUP Use After Free
CVE-2013-0030 (web_client.rules)


 [///]     Modified active rules:     [///]

  2016400 - ET CURRENT_EVENTS Flash Action Script Invalid Regex
CVE-2013-0634 (current_events.rules)
  2016401 - ET CURRENT_EVENTS Flash Action Script Invalid Regex
CVE-2013-0634 (current_events.rules)
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.emergingthreats.net/pipermail/emerging-updates/attachments/20130212/495ccf15/attachment.html>


More information about the Emerging-updates mailing list