https://community.cisco.com/t5/network-security/recent-microsoft-vulnerabilities/m-p/473022#M100321 <HTML><HEAD></HEAD><BODY><P>Signature 5556 and its subsigs cover the JView Profiler vulnerability. They all are enabled by default. Subsigs 2 and 3 are available on 5.x platforms only. The signatures are released in S180 and S181.</P><P></P><P>For the Windows Color Management Module vulnerability, we have released signature 5557 in S181. This signature is available on 5.x platforms only. All the subsigs are enabled by default.</P><P></P></BODY></HTML> Fri, 15 Jul 2005 15:34:26 GMT rupadras 2005-07-15T15:34:26Z https://community.cisco.com/t5/network-security/recent-microsoft-vulnerabilities/m-p/473020#M100317 <P>I recently read the following article <A class="jive-link-custom" href="http://news.zdnet.co.uk/internet/0,39020369,39208852,00.htm" target="_blank">http://news.zdnet.co.uk/internet/0,39020369,39208852,00.htm</A></P><P></P><P>I would like to find out if there are any currently enabled signatures to capture this vulnerability yet or are they on there way:</P><P></P><P> Microsoft Color Management Module, a component of Windows that handles colors. </P><P>Microsoft Security Bulletin MS05-036</P><P><A class="jive-link-custom" href="http://go.microsoft.com/fwlink/?linkid=49316" target="_blank">http://go.microsoft.com/fwlink/?linkid=49316</A></P><P> JView Profiler, part of Microsoft's Java Virtual Machine</P><P>Microsoft Security Bulletin MS05-037</P><P><A class="jive-link-custom" href="http://go.microsoft.com/fwlink/?linkid=49999" target="_blank">http://go.microsoft.com/fwlink/?linkid=49999</A></P> Sun, 10 Mar 2019 09:32:27 GMT https://community.cisco.com/t5/network-security/recent-microsoft-vulnerabilities/m-p/473020#M100317 darin.marais 2019-03-10T09:32:27Z https://community.cisco.com/t5/network-security/recent-microsoft-vulnerabilities/m-p/473021#M100319 <HTML><HEAD></HEAD><BODY><P>My apologies, I have just visited the Cisco Intrusion Prevention Alert Center and I was able to find the answer to my question there.</P><P></P><P>13 July 2005: Breaking News</P><P>Cisco PSIRT has released three (3) recent advisories.</P><P>Additional details can be found here:</P><P><A class="jive-link-custom" href="http://www.cisco.com/en/US/products/products_security_advisories_listing.html" target="_blank">http://www.cisco.com/en/US/products/products_security_advisories_listing.html</A></P><P></P><P>Microsoft has released 3 security bulletins.</P><P>Additional details can be found here:</P><P><A class="jive-link-custom" href="http://www.microsoft.com/technet/security/bulletin/ms05-jul.mspx" target="_blank">http://www.microsoft.com/technet/security/bulletin/ms05-jul.mspx</A></P><P></P><P>Signature release S180 contains signatures related to MS05-037.</P><P>We are currently investigating the remaining vulnerabilities for possible signatures.</P><P></P></BODY></HTML> Fri, 15 Jul 2005 13:34:35 GMT https://community.cisco.com/t5/network-security/recent-microsoft-vulnerabilities/m-p/473021#M100319 darin.marais 2005-07-15T13:34:35Z https://community.cisco.com/t5/network-security/recent-microsoft-vulnerabilities/m-p/473022#M100321 <HTML><HEAD></HEAD><BODY><P>Signature 5556 and its subsigs cover the JView Profiler vulnerability. They all are enabled by default. Subsigs 2 and 3 are available on 5.x platforms only. The signatures are released in S180 and S181.</P><P></P><P>For the Windows Color Management Module vulnerability, we have released signature 5557 in S181. This signature is available on 5.x platforms only. All the subsigs are enabled by default.</P><P></P></BODY></HTML> Fri, 15 Jul 2005 15:34:26 GMT https://community.cisco.com/t5/network-security/recent-microsoft-vulnerabilities/m-p/473022#M100321 rupadras 2005-07-15T15:34:26Z https://community.cisco.com/t5/network-security/recent-microsoft-vulnerabilities/m-p/473023#M100322 <HTML><HEAD></HEAD><BODY><P>I see that Cisco have released an update s181 that contains the added signatures for these vulnerabilities but they have only been installed on version 5.x sensors. </P><P></P><P>Does anyone know the reason why it has not been implemented for version 4.x?</P></BODY></HTML> Fri, 15 Jul 2005 15:57:20 GMT https://community.cisco.com/t5/network-security/recent-microsoft-vulnerabilities/m-p/473023#M100322 darin.marais 2005-07-15T15:57:20Z https://community.cisco.com/t5/network-security/recent-microsoft-vulnerabilities/m-p/473024#M100323 <HTML><HEAD></HEAD><BODY><P>Whenever possible, the signature team will release new signatures for both 5.x and 4.x, but only when they both have the appropriate engine available or there is a suitable method for writing the signature</P><P>without a significant loss in fidelity or performance. In this case, we were not able to come up with a 4.x signature that meets those requirements while ensuring we delivered a timely response to our</P><P>customers.</P><P></P><P>The signature team will continue to review the vulnerability and, if possible, release a 4.x signature for the issue. This is consistent with our goal to provide quality signatures to all of our customers.</P><P></P><P>Walter.</P></BODY></HTML> Fri, 15 Jul 2005 16:27:27 GMT https://community.cisco.com/t5/network-security/recent-microsoft-vulnerabilities/m-p/473024#M100323 wsulym 2005-07-15T16:27:27Z