Sourcefire releases protection for Word and Jed Database Engine vulnerabilities announced by Microsoft
Open source innovator and Snort creator, Sourcefire has announced that the Sourcefire Vulnerability Research Team (VRT) has delivered rules to protect Sourcefire customers and Snort users from two Microsoft vulnerabilities disclosed today. These vulnerabilities impact Microsoft Word and the Microsoft Jet Database Engine. “With new vulnerabilities discovered everyday, today’s global organisations require proactive solutions backed by industry experts that can protect them from both known and unknown threats,” said Matt Watchinski, Director of the Sourcefire Vulnerability Research Team. “The Sourcefire VRT works diligently to identify the latest threats and ensure that our customers are protected even before an exploit is created. Combined with Sourcefire’s leading security solutions, we allow our customers to focus on their business objectives without worrying about the safety of their network assets.” Following Microsoft’s disclosure earlier today, the Sourcefire VRT created, tested and delivered Snort rules designed to detect attacks targeting the Microsoft vulnerabilities listed below. These new rules are included in the latest Sourcefire Security Enhancement Update (SEU) released today. * Microsoft Security Bulletin MS08-026 – Critical Microsoft Word remote code execution vulnerability could allow an attacker to take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. * Microsoft Security Bulletin MS08-028 – Critical Microsoft Jet Database Engine remote code execution vulnerability could allow an attacker to take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. |
