Cisco Vulnerability Database (VDB) Update for Sourcefire 3D System

Date: 2016-04-11

This VDB: 265
Previous VDB: 264

Sourcefire 3D System Version 4.10.x:

• Cisco FireSIGHT Management Centers (formerly Defense Center) and 3D Sensors
• 3D Sensor Software for Crossbeam X-Series

Sourcefire 3D System Version 5.x:

• Cisco FireSIGHT Management Centers (formerly Defense Center)

Supported Detector Types:

• service (4.10.x) and application protocol (5.x)
• client application (4.10.x) and client (5.x)
• payload (any 4.10.x release including and above 4.10.1) and web application (5.x)

IMPORTANT! Some application protocol, client, and web application detectors are supported in Version 5.x only. This Advisory refers to these as FireSIGHT application detectors.

Download the VDB update and obtain update instructions from the Sourcefire Support Site at https://support.sourcefire.com. Note that the time it takes to update the VDB can vary. For more information, see the online help on your appliance or download the Sourcefire 3D System User Guide from the Support Site.

VDB Changelog:
from version 261 (4:50:42 PM on January 25th, 2016 UTC)
to version 265 (3:12:55 PM on March 28th, 2016 UTC)

• Apple Mac OSX Mac OSX 10.11.3 (ID 130058) added
• Apple Mac OSX Mac_OSX 10.5, 10.6, 10.10.1, 10.10.2, 10.10.4, 10.10.5, 10.11, 10.11.1, 10.11.3 (ID 925) updated
• Apple Mac OSX or iOS Mac_OSX 10.5, 10.6, 10.10, 10.10.1, 10.10.2, 10.10.4, 10.10.5, 10.11,10.11.1, 10.11.3 or iOS 8.0, 8.0.2, 8.1, 8.1.1, 8.1.2, 8.1.3, 8.2, 8.3, 8.4, 8.4.1, 9.0, 9.0.1, 9.0.2, 9.1, 9.2, 9.2.1 (ID 30925) updated
• Google Android Android 6, 6.0.1 (ID 30962) updated Operating System and Hardware Fingerprint Details (5.1.x)::
• Google Android Android 6.0.1 (ID 70189) added
• Apple iOS iOS 9.2.1 (ID 70190) added
• Apple iOS iOS 9.2.1 (ID 70191) added

• Gnutella: A large peer-to-peer file-sharing network. removed
• Tanium: Endpoint security and systems management software. added

• Gnutella: A large peer-to-peer file-sharing network. added

• ABC: Web Portal for television network. removed
• Acoon.de: Search engine and Web crawler. added
• Adenin: A web portal. added
• Advertising.com: Web advertisement services. removed
• Aizhan: Chinese web portal. added
• AOL: American company develops, grows and invests in brands and web sites. added
• Apple Update: Apple software updating tool. added
• Ask.com: Search engine. added
• Babylon: Search engine, Translation and Dictionary toolbar. added
• Baidu: Chinese Search engine. added
• Baidu Movies: Video search engine by Baidu. added
• Bing: Microsoft's internet search engine. added
• Bing Bar: Browser Toolbar for Bing search engine. added
• Blackbox: Network hardware and software vendor. added
• Blekko: Search engine based on categories. added
• blinkx: Video search engine. added
• Cisco Jabber Video: Video conferencing with Cisco's instant messenger. removed
• Dailymotion: A video sharing service website. added
• Delta Search: A search engine, with a toolbar that is commonly installed by mistake. added
• Dogpile: Search engine aggregator. added
• DuckDuckGo: Search engine. added
• EdgeCast: Content delivery network. removed
• Exchange Online: Traffic associated with Exchange Online, such as visiting outlook.com. added
• Facebook Chat: Facebook's integrated chat client. removed
• Facebook event: A message or page view of a social event on Facebook. removed
• Facebook Like: Clicking Like on Facebook. added
• Facebook Message: A message sent on Facebook. added
• Facebook post: A status update on Facebook. removed
• Facebook Read Email: An action to read email on Facebook's integrated personal message system. removed
• Facebook search: Using the search bar on Facebook. removed
• Facebook Send Email: An action to send email on Facebook's integrated personal message system. removed
• Facebook video: Viewing video posted on Facebook. removed
• Facebook video chat: Video chat on Facebook. removed
• Filer.cx: A file hosting service that provides free web space for documents, pictures, music and movies. removed
• Flickr: An image hosting and video hosting website, web services suite, and online community. added
• Google: Traffic generated by the Google search engine or one of the other many Internet services provided by Google Inc. added
• Google Checkout: Online Payment service by Google. removed
• Google Groups: Platform for discussion groups provided by Google. added
• Google Product Search: Google e-commerce site. added
• iCloud: Apple cloud storage service. removed
• Info.com: Search engine. added
• iTunes: Apple's media player and online store. removed
• Jubii: Web portal providing search engine, e-mail, and file sharing services. added
• Livemeeting: Microsoft's commercial web-conferencing service. removed
• Lycos: Search engine also offers email, web hosting and social networking. added
• Lync: Microsoft instant messaging system. removed
• Messenger: Facebook's standalone messenger app. added
• MetaCrawler: Metasearch engine that combines results from various popular search engines. added
• Microsoft Visual Studio: Microsoft Integrated Developer Environment and toolchain designed to make it easier to develop software for Microsoft platforms. added
• MyWebSearch: Web portal. added
• Nate: Web portal and Search engine. added
• Naver: Web portal. added
• Netfolder.in: Free online file sharing. removed
• Netload: File hosting site. removed
• RapidShare: Obsolete in all product versions removed
• Office 365: Traffic generated by MS Office 365 applications and web services. added
• Office 365 Planner: Microsoft online calendar. added
• Office for iPad: Microsoft productivty apps for use on the iPad. added
• Office Mobile: Microsoft productivty apps for use on Android devices. added
• Outlook: Microsoft email service. removed
• Picsearch: Image search engine. added
• RapidShare: Site for sharing and transferring files. removed
• Safari: Apple's web browser. removed
• Searchnu: Search engine. added
• Sharepoint: Microsoft collaboration, file sharing and web publishing system. removed
• Skype: A software application that allows users to chat, make voice/video calls, and transfer files over the Internet. added
• Soku: Youku's search engine. added
• Soso: Chinese search engine. added
• Starbucks: Mobile application for a ubiquitous chain of coffee shops. removed
• SUPERAntiSpyware: Antivirus / antimalware application. removed
• Sway: Microsoft collaboration tool. added
• Technorati: Search engine for blogs. added
• The Pirate Bay: BitTorrent index and search engine. added
• Torrentz: BitTorrent metasearch engine. added
• Tumblr: A combined social network and microblogging platform. added
• Webcrawler: A search engine. added
• Windows Azure: Cloud computing by Microsoft. removed
• Wow: A search engine. added
• Yahoo!: Yahoo! and it's online services. added
• Yahoo! Toolbar: Yahoo!'s browser toolbar. added
• Yandex: Russian search engine. added
• YouTube: A video-sharing website on which users can upload, share, and view videos. added

• Yandex Images: Yandex image search. added
• Yandex Translate: Online translation form Yandex. added
• Yandex AppMetrica: Yandex analytics. added
• Yandex Video: Yandex video streaming page. added
• Letv: Chinese video streaming site. added
• uProxy: Anonymizing proxy. added
• Yandex Maps: Online maps provided by Yandex. added
• Yandex Money: Financial and stock market news from Yandex. added
• Yandex Music: Yandex music downloads. added
• Yandex Email: Webmail provided by Yandex. added
• Psiphon: Web proxy/anonymizer. added
• Fiesta: Games website. added
• Yandex Market: Yandex shopping. added
• Filer.cx: A file hosting service that provides free web space for documents, pictures, music and movies. removed
• EdgeCast: Content delivery network. removed
• RapidShare: Site for sharing and transferring files. removed

• no additions or modifications.

VDB Update Installation Instructions:

Detailed installation instructions can be found here.

VDB Update Summary:

For a complete list of new and modified information use this link.

For Assistance:

For information on obtaining documentation, using the Cisco Bug Search Tool (BST), submitting a service request, and gathering additional information about Cisco ASA devices, see What's New in Cisco Product Documentation.

Subscribe to What's New in Cisco Product Documentation, which lists all new and revised Cisco technical documentation, as an RSS feed and deliver content directly to your desktop using a reader application. The RSS feeds are a free service. If you have any questions or require assistance with Cisco ASA devices, please contact Cisco Support:

• Note: To open a TAC request, you must first register for a Cisco.com user ID
• Once you have a Cisco.com user ID, you may initiate or check on the status of a service request online or contacting the TAC by phone:
• U.S. - 1-800-553-2447 Toll Free
• International support numbers
• For additional information on obtaining technical support through the TAC, please consult the Technical Support Reference Guide (PDF - 1 MB)

About Talos:

The Talos Security Intelligence and Research Group (Talos) is made up of leading threat researchers supported by sophisticated systems to create threat intelligence for Cisco products that detects, analyzes and protects against both known and emerging threats. Talos maintains the official rule sets of Snort.org, ClamAV, SenderBase.org and SpamCop. The team's expertise spans software development, reverse engineering, vulnerability triage, malware investigation and intelligence gathering.