Warning: fopen(/home/rachdian/public_html/2008/old/cache/rss20.xml) [function.fopen]: failed to open stream: No such file or directory in /home/rachdian/public_html/2008/old/includes/feedcreator.class.php on line 685

Error creating feed file, please check write permissions.
Saturday, September 04 2010
Home
Photos Gallery
Guest Book
Links
Hot Info
Index
Latest Info
Jobs Info
IT/IS - Security
Education
Photo Stories (Photoblog)
Travelling Stories
About Me & Site
For Geek Family Only
About Me...
Diary
Contact Me
The Page Rank
Home arrow Index arrow IT/IS Security & Vulnerability arrow VRT Certified Rules Update 2006-06-15
VRT Certified Rules Update 2006-06-15 Print
User Rating: / 0
PoorBest 
Written by snort.org   
Friday, 16 June 2006
The Sourcefire VRT has learned of multiple vulnerabilities affecting Microsoft Internet Explorer, Windows Media Player and the Microsoft Operating System.


Details:
Microsoft Security Bulletin MS06-021
Internet Explorer does not correctly handle input to certain ActiveX controls.  It is possible for an attacker to supply data of their choosing to the DXImageTransform.Microsoft.Light ActiveX control and execute code on the affected host.

Rules to detect attacks against this vulnerability are included in this rule pack and are identified as sids 6516 through 6519 and 6680 through 6687.

Microsoft Security Bulletin MS06-024
Windows Media Player is vulnerable to a stack based buffer overflow condition that can be exploited by an attacker via a PNG image with a large chunk size.

Rules to detect attacks against this vulnerability are included in this rule pack and are identified as sids 6688 through 6701.

Microsoft Security Bulletin MS06-025
Microsoft operating systems using Routing and Remote Access (RRAS) are vulnerable to a memory corruption problem that may be exploited by unauthenticated users. This may lead to code of the attackers choosing being run on an affected host.

Rules to detect attacks against this vulnerability are included in this rule pack and are identified as sids 6584 through 6679.

Microsoft Security Bulletin MS06-032
The TCP/IP stack in Microsoft Windows systems is vulnerable to remote code execution. The stack does not correctly process loose and strict source code routing packets which may present an attacker with the opportunity to execute code of their choosing on an affected system.

Rules to detect attacks against this vulnerability are already available and are identified as sids 500 and 502.


Advisory:
A detailed advisory as well as a complete list of modified and deleted rules is available at http://www.snort.org/rules/advisories/vrt-rules-2006-06-15.html.


Download Rules:
These rules will be available to subscribers only until Tuesday, June 20, 2006. Subscribers can download the rules at http://www.snort.org/pub-bin/downloads.cgi

Comments

Write Comment
Name:Guest
Title:
BBCode:Web AddressEmail AddressBold TextItalic TextUnderlined TextQuoteCodeOpen ListList ItemClose List
Comment:



This image contains a scrambled text, it is using a combination of colors, font size, background, angle in order to disallow computer to automate reading. You will have to reproduce it to post on my homepage Enter what you see: *
tips: hit Reload page before writing a text if you have difficulty reading characters in image

Last Updated ( Friday, 16 June 2006 )
[ Back ]


© Copyright 2005, Adhi Rachdian.
URL: http://adhi.rachdian.com, http://rachdian.com, http://adhi.pacific.net.id, http://rachdian.pacific.net.id or http://blog.rachdian.com