https://community.extremenetworks.com/t5/end-of-service-products/new-dragon-ips-signature-release/m-p/22216#M153 The following NIDS signature updates are available via liveupdate for Dragon versions 7.x/8.x:<BR /> <BR /> <BR /> <BR /> IE:UMCI-SECURITY-BYPASS<BR /> <BR /> UPDATE-TYPE: New Signature<BR /> <BR /> CLASSIFICATION: BETA<BR /> <BR /> DESCRIPTION: A security bypass vulnerability exists when Microsoft Internet Explorer processes a specially crafted file. Microsoft has released a patch for this vulnerability.<BR /> <BR /> REFERENCE: URLREF<BR /> <BR /> <A href="https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8625" target="_blank" rel="nofollow noreferrer noopener">https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8625</A><BR /> <BR /> REFERENCE: CVE<BR /> <BR /> CVE-2017-8625<BR /> <BR /> <BR /> <BR /> <BR /> <BR /> MS:JET-DATABASE-ENGINE-RCE<BR /> <BR /> UPDATE-TYPE: New Signature<BR /> <BR /> CLASSIFICATION: BETA<BR /> <BR /> DESCRIPTION: There is a vulnerability in the Microsoft JET Database Engine that may lead to remote code execution. The vulnerability is in the processing of a specially crafted database files. Microsoft has released a patch for this vulnerability. This signature looks for the downloading of a crafted Microsoft Jet DB file.<BR /> <BR /> REFERENCE: URLREF<BR /> <BR /> <A href="https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0250" target="_blank" rel="nofollow noreferrer noopener">https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0250</A><BR /> <BR /> REFERENCE: CVE<BR /> <BR /> CVE-2017-0250<BR /> <BR /> <BR /> <BR /> Wed, 09 Aug 2017 22:32:00 GMT Dudley__Jeff 2017-08-09T22:32:00Z https://community.extremenetworks.com/t5/end-of-service-products/new-dragon-ips-signature-release/m-p/22216#M153 The following NIDS signature updates are available via liveupdate for Dragon versions 7.x/8.x:<BR /> <BR /> <BR /> <BR /> IE:UMCI-SECURITY-BYPASS<BR /> <BR /> UPDATE-TYPE: New Signature<BR /> <BR /> CLASSIFICATION: BETA<BR /> <BR /> DESCRIPTION: A security bypass vulnerability exists when Microsoft Internet Explorer processes a specially crafted file. Microsoft has released a patch for this vulnerability.<BR /> <BR /> REFERENCE: URLREF<BR /> <BR /> <A href="https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8625" target="_blank" rel="nofollow noreferrer noopener">https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8625</A><BR /> <BR /> REFERENCE: CVE<BR /> <BR /> CVE-2017-8625<BR /> <BR /> <BR /> <BR /> <BR /> <BR /> MS:JET-DATABASE-ENGINE-RCE<BR /> <BR /> UPDATE-TYPE: New Signature<BR /> <BR /> CLASSIFICATION: BETA<BR /> <BR /> DESCRIPTION: There is a vulnerability in the Microsoft JET Database Engine that may lead to remote code execution. The vulnerability is in the processing of a specially crafted database files. Microsoft has released a patch for this vulnerability. This signature looks for the downloading of a crafted Microsoft Jet DB file.<BR /> <BR /> REFERENCE: URLREF<BR /> <BR /> <A href="https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0250" target="_blank" rel="nofollow noreferrer noopener">https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0250</A><BR /> <BR /> REFERENCE: CVE<BR /> <BR /> CVE-2017-0250<BR /> <BR /> <BR /> <BR /> Wed, 09 Aug 2017 22:32:00 GMT https://community.extremenetworks.com/t5/end-of-service-products/new-dragon-ips-signature-release/m-p/22216#M153 Dudley__Jeff 2017-08-09T22:32:00Z