[***] Summary: [***] 5 new Open signatures, 20 new Pro (5 + 15). Sandworm, Patch Tuesday, TorrentLocker DNS Lookup. Thanks: Jake Warren [+++] Added rules: [+++] Open: 2019395 - ET CURRENT_EVENTS Possible SandWorm INF Download (current_events.rules)
2019396 - ET TROJAN TorrentLocker DNS Lookup (trojan.rules)
2019397 - ET CURRENT_EVENTS Possible SandWorm INF Download (UNICODE) (current_events.rules)
2019398 - ET CURRENT_EVENTS Possible SandWorm INF Download (SMB) (current_events.rules)
2019399 - ET CURRENT_EVENTS Possible SandWorm INF Download (SMB UNICODE) (current_events.rules) Pro: 2808986 - ETPRO WEB_CLIENT Possible malformed disk image transfer CVE-2014-4117 (web_client.rules)
2808987 - ETPRO WEB_CLIENT Possible Internet Explorer Use-After-Free CVE-2014-4126 (web_client.rules)
2808988 - ETPRO WEB_CLIENT Possible Internet Explorer Buffer use after free CVE-2014-4127 (web_client.rules)
2808989 - ETPRO WEB_CLIENT Possible Internet Explorer Buffer overflow CVE-2014-4128 (web_client.rules)
2808990 - ETPRO WEB_CLIENT Possible Internet Explorer Use-After-Free CVE-2014-4129 (web_client.rules)
2808991 - ETPRO WEB_CLIENT Possible Internet Explorer Use-After-Free CVE-2014-4130 (web_client.rules)
2808992 - ETPRO WEB_CLIENT Possible Internet Explorer Use-After-Free CVE-2014-4132 (web_client.rules)
2808993 - ETPRO WEB_CLIENT Possible Internet Explorer Use-After-Free CVE-2014-4133 (web_client.rules)
2808994 - ETPRO WEB_CLIENT Possible Internet Explorer Use-After-Free CVE-2014-4134 (web_client.rules)
2808995 - ETPRO WEB_CLIENT Possible Internet Explorer Heap Corruption CVE-2014-4138 (web_client.rules)
2808996 - ETPRO WEB_CLIENT Internet Explorer 11 Sandbox Escapes vulnerable ActiveX control in executable (CVE-2014-4123) (web_client.rules)
2808997 - ETPRO WEB_CLIENT Internet Explorer 11 Sandbox Escapes methods in executable (CVE-2014-4123) (web_client.rules)
2808998 - ETPRO WEB_CLIENT Possible Internet Explorer Memory Corruption Vulnerability CVE-2014-4137 (web_client.rules)
2808999 - ETPRO WEB_CLIENT Internet Explorer heap corruption CVE-2014-4140 (web_client.rules)
2809000 - ETPRO WEB_CLIENT Possible Internet Explorer Memory Corruption Vulnerability CVE-2014-4141 (web_client.rules)
[///] Modified active rules: [///] 2011582 - ET POLICY Vulnerable Java Version 1.6.x Detected (policy.rules)
2014297 - ET POLICY Vulnerable Java Version 1.7.x Detected (policy.rules)
2014726 - ET POLICY Outdated Windows Flash Version IE (policy.rules)
2014727 - ET POLICY Outdated Mac Flash Version (policy.rules)
2019365 - ET WEB_SPECIFIC_APPS Bugzilla token.cgi HPP e-mail validation bypass Attempt Client Body (web_specific_apps.rules)
Date: 
Monday, October 13, 2014 - 22:00