End of Service Products

Expand all | Collapse all

New Dragon IPS signature release December 20 2018

  • 1.  New Dragon IPS signature release December 20 2018

    Posted 12-20-2018 12:43
    The following NIDS signature updates are available via liveupdate for Dragon versions 7.x/8.x:

    IE:SCRIPTING-ENGINE-RCE-61
    UPDATE-TYPE: New Signature
    CLASSIFICATION: BETA
    DESCRIPTION: A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. Microsoft has released a patch for this vulnerability.
    REFERENCE: URLREF
    https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8653
    REFERENCE: CVE
    CVE-2018-8653


  • 2.  RE: New Dragon IPS signature release December 20 2018

    Posted 12-20-2018 19:32
    Thanks Jeff!