Open source innovator and SNORT® creator, Sourcefire, Inc., a leader in Enterprise Threat Management, announced that the Sourcefire® Vulnerability Research Team (VRT) has delivered rules to protect Sourcefire customers and Snort users from two Microsoft vulnerabilities disclosed today. These vulnerabilities impact Microsoft Word and the Microsoft Jet Database Engine.
"With new vulnerabilities discovered everyday, today’s global organizations require proactive solutions backed by industry experts that can protect them from both known and unknown threats," said Matt Watchinski, Director of the Sourcefire Vulnerability Research Team. "The Sourcefire VRT works diligently to identify the latest threats and ensure that our customers are protected even before an exploit is created. Combined with Sourcefire’s leading security solutions, we allow our customers to focus on their business objectives without worrying about the safety of their network assets."
Following Microsoft’s disclosure earlier today, the Sourcefire VRT created, tested and delivered Snort rules designed to detect attacks targeting the Microsoft vulnerabilities listed below. These new rules are included in the latest Sourcefire Security Enhancement Update (SEU) released today.
Microsoft Security Bulletin MS08-026 – Critical Microsoft Word remote code execution vulnerability could allow an attacker to take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.
Microsoft Security Bulletin MS08-028 – Critical Microsoft Jet Database Engine remote code execution vulnerability could allow an attacker to take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.
About the Sourcefire VRT The Sourcefire VRT is a group of leading edge intrusion detection and prevention experts working to proactively discover, assess and respond to the latest trends in hacking activities, intrusion attempts and vulnerabilities. This team is also supported by the vast resources of the open source Snort community, making it the largest group dedicated to advances in the network security industry.For more information please visit http://www.sourcefire.com">http://www.sourcefire.com.
