Warning: fopen(/home/rachdian/public_html/2008/old/cache/rss20.xml) [function.fopen]: failed to open stream: No such file or directory in /home/rachdian/public_html/2008/old/includes/feedcreator.class.php on line 685

Error creating feed file, please check write permissions.
Saturday, September 04 2010
Home
Photos Gallery
Guest Book
Links
Hot Info
Index
Latest Info
Jobs Info
IT/IS - Security
Education
Photo Stories (Photoblog)
Travelling Stories
About Me & Site
For Geek Family Only
About Me...
Diary
Contact Me
The Page Rank
Home arrow Index arrow IT/IS Security & Vulnerability arrow Vulnerabilities affecting Microsoft Agent, Microsoft Visual Studio and Microsoft MSN Messenger
Vulnerabilities affecting Microsoft Agent, Microsoft Visual Studio and Microsoft MSN Messenger Print
User Rating: / 0
PoorBest 
Written by snort.org   
Wednesday, 12 September 2007
VRT Certified Rules Update 2007-09-11

The Sourcefire VRT is aware of vulnerabilities affecting Microsoft Agent, Microsoft Visual Studio and Microsoft MSN Messenger.

Details:
Microsoft Security Bulletin MS07-051:
Microsoft Agent contains a vulnerability that may allow a remote attacker to compromise a host. The agent fails to correctly process Uniform Resource Locators (URL) which may present the attacker with the opportunity to execute code.

A rule to detect attacks targeting this vulnerability is included in this release and is identified as SID 12454.

Additionally, SID 1437 may generate events for attacks targeting this vulnerability.
Microsoft Security Bulletin MS07-052:
Some versions of Microsoft Visual Studio include a custom version of Crystal Reports that contains a vulnerability that may allow an attacker to execute code on a host. An attacker may use a specially crafted RPT file to compromise an affected system.

Rules to detect attacks targeting this vulnerability are included in this release and are identified as SIDs 12455 and 12456.

Microsoft Security Bulletin MS07-054:
MSN Messenger and Windows Live Messenger contain remote code execution vulnerabilities that may be exploited by an attacker via a video chat invitation.

A rule to detect attacks targeting this vulnerability is included in this release and is identified as SID 12457.


Advisory:
A detailed advisory as well as a complete list of modified and deleted rules is available at:
 http://www.snort.org/vrt/advisories/vrt-rules-2007-09-11.html

Download Rules:
These rules will be available to subscribers only until Thursday, October 11, 2007. Subscribers can download the rules at:
 http://www.snort.org/pub-bin/downloads.cgi

If you would like to purchase a subscription, please visit:
 http://www.snort.org/vrt/why_subscribe.html
or contact Sourcefire at 734.542.8540.

Comments

Write Comment
Name:Guest
Title:
BBCode:Web AddressEmail AddressBold TextItalic TextUnderlined TextQuoteCodeOpen ListList ItemClose List
Comment:



This image contains a scrambled text, it is using a combination of colors, font size, background, angle in order to disallow computer to automate reading. You will have to reproduce it to post on my homepage Enter what you see: *
tips: hit Reload page before writing a text if you have difficulty reading characters in image

Last Updated ( Wednesday, 12 September 2007 )
[ Back ]


© Copyright 2005, Adhi Rachdian.
URL: http://adhi.rachdian.com, http://rachdian.com, http://adhi.pacific.net.id, http://rachdian.pacific.net.id or http://blog.rachdian.com