IPS Signature Database Update (Critcal)
Name | ips.sig (critical) | ||
Version | 1.0.152 | ||
Release Date | 2011-05-24 | ||
StoneOS | StoneOS 4.0 or above | ||
New Signature | Attack ID | Description | Detail |
No update | |||
Updated Signature | Attack ID | Description | Detail |
1900029 | Microsoft Windows Server Service RPC Handling Remote Code Execution Vulnerability(MS08-067) | Signature updated | |
According to Hillstone's recent security research, the FeiKe Conficker worm (also known as Downup, Downadup or Kido) is in growth. There were several reports from customers about being infected by FeiKe Conficker. To defend against the Conficker worm and its variants, the vulnerability identification method in IPS Rule 1900029 (MS08-067) has been specifically modified and released. Hillstone reminds you that you should install the Microsoft vulnerability patch MS08-067, MS09-068 and MS09-001 to avoid the infection and improve immunity against network worms. | |||
300972 | nc.exe attempt | Signature updated |