Demarc Security Releases Snort Vulnerability Fix; Sentarus 6 Development Engineers First to Discover and Report Snort Vulnerability.CARPINTERIA, Calif. -- Demarc Security, the industry leader in Threat Protection Solutions, announced today that Sentarus 6 development engineers have discovered a non-trivial vulnerability in Snort An open source network intrusion detection system (NIDS) that is noted for its effectiveness. Developed by Martin Roesch, Snort can also be used just as a packet logger or packet sniffer. For more information, visit www.snort.org. See IDS. protected networks. Following proper open-source protocol, the vulnerability was reported to Sourcefire on May 18th, 2006. Additional information and code was provided to Sourcefire to assist in their effort to develop a fix. CERT, ISC (1) (Internet Systems Consortium, Redwood City, CA www.isc.org) An organization founded by Paul Vixie, Carl Malamud and Rick Adams in 1994 and later sponsored by UUNET and other Internet companies. , Bleeding Snort mailing lists An automated e-mail system on the Internet, which is maintained by subject matter. There are thousands of such lists that reach millions of individuals and businesses. New users generally subscribe by sending an e-mail with the word "subscribe" in it and subsequently receive all new and Snort mailing lists were alerted on May 31st, 2006. The vulnerability warranted a swift response to ensure the security of all Snort users. Demarc's Threat Research Team developed and released a patch on May 31st, 2006. This patch was automatically distributed and installed by Sentarus at customer sites worldwide. Demarc partners and the Snort user community have free unlimited access to download the patch at http://www.demarc.com/support/downloads/patch_20060531. "Demarc's vigilant dedication to customer security and our support of the open-source community has been clearly demonstrated," said Bill Wall, Vice President of Sales and Marketing for Demarc Security, Inc. Blake Hartstein of the Demarc Threat Research team discovered the flaw which allows all Uniform Resource Identifier “URI” redirects here. For other uses, see URI (disambiguation). A Uniform Resource Identifier (URI), is a compact string of characters used to identify or name a resource. (URI Uri, in the Bible Uri (y  `rī), in the Bible.1 Father of Bezaleel (1.) 2 Father of Geber (2.) 3 Porter. ) content rules to be bypassed by adding a carriage return to the end of the URL URL in full Uniform Resource Locator Address of a resource on the Internet. The resource can be any type of file stored on a server, such as a Web page, a text file, a graphics file, or an application program. being requested (before the HTTP protocol declaration). Joel Ebrahimi, a developer with Demarc, then coded a patch to correct for the flaw. The patched Snort engine has been run through Demarc's test suite and matches on the Uniform Resource Identifier (URI) content even when the evasion attempts are in place. The scope of the Snort vulnerability mandates immediate corrective action A corrective action is a change implemented to address a weakness identified in a management system. Normally corrective actions are instigated in response to a customer complaint, abnormal levels if internal nonconformity, nonconformities identified during an internal audit or . The nature of this vulnerability may require further refinement of the patch. Critical feedback from the Snort community will determine if an updated patch is appropriate. For information on Demarc, Sentarus and the Snort vulnerability patch download go to http://www.demarc.com/support/downloads/patch_20060531. About Demarc Demarc Security, Inc. is the industry leader in Threat Protection Solutions for commercial, civilian government and military installations in more than 25 countries worldwide. Sentarus 6 is the industry's only expert based Threat Protection System securing: networks, servers, desktops and wireless devices. Demarc (www.demarc.com) was founded in 2001 and is headquartered in Carpinteria, California Carpinteria is a small oceanside city located in the southeastern extremity of Santa Barbara County, California, east of Santa Barbara and northwest of Ventura. The population was 14,194 at the 2000 census. . Demarc, Demarc Security, Sentarus and Threat Index Engine are trademarks or registered trademarks of Demarc Security, Inc. All other products, services, companies, events and publications are trademarks, registered trademarks or service marks of their respective owners in the U.S. and/or other countries. |
|
Printer friendly
Cite/link
Email
Feedback
Reader Opinion