New Filters: 43700: HTTP: Microsoft Windows Internet Shortcut SmartScreen Bypass Vulnerability - IPS Version: 3.9.5 and after. - TPS Version: 5.2.2 and after. - vTPS Version: 5.2.2 and after. - Category: Exploits - Severity: Critical - Description: This filter detects an attempt to exploit a security bypass vulnerability in Microsoft Windows SmartScreen. - Deployments: - Deployment: Default (Block / Notify) - References: - Common Vulnerabilities and Exposures: CVE-2023-36025 - Classification: Vulnerability - Other - Protocol: HTTP - Platform: Windows Client Application - Release Date: January 17, 2024 43701: ZDI-CAN-23100: Zero Day Initiative Vulnerability (Microsoft Windows SmartScreen) - IPS Version: 3.9.5 and after. - TPS Version: 5.2.2 and after. - vTPS Version: Not available. - Requires: IPS N-Platform, NX-Platform, or TPS models. - Category: Vulnerabilities - Severity: Critical - Description: This filter protects against exploitation of a zero-day vulnerability affecting Microsoft Windows SmartScreen. - Deployments: - Deployment: Default (Block / Notify / Trace) - Classification: Vulnerability - Other - Protocol: Other Protocol - Platform: Other Server Application or Service - Release Date: January 17, 2024 Modified Filters (logic changes): None Modified Filters (metadata changes only): None Removed Filters: None

Digital Vaccine #9866 OOB

Product / Version includes:

TippingPoint Digital Vaccine All

Last updated: 2025/05/08

Solution ID: KA-0015902

Category: Configure , Troubleshoot , Deploy

Summary

Digital Vaccine #9866 OOB January 17, 2024

System Requirements

The 3.2.0 DV will run on IPS devices with TOS v3.2.0 and above, and all TPS systems. The 4.0.0 DV will only run on the Virtual Threat Protection System (vTPS) appliance. Please note that vTPS does not currently support pre-disclosed ZDI filters.

The Digital Vaccine can be manually downloaded from the following URLs:
https://tmc.tippingpoint.com/TMC/ViewPackage?parentFolderId=digital_vaccines&contentId=SIG_3.2.0_9866.pkg
https://tmc.tippingpoint.com/TMC/ViewPackage?parentFolderId=vsa_dv&contentId=SIG_VTPS_4.0.0_9866.pkg

Table of Contents
--------------------------
  New Filters - 2
  Modified Filters (logic changes) - 0
  Modified Filters (metadata changes only) - 0
  Removed Filters - 0

  New Filters:
  
    43700: HTTP: Microsoft Windows Internet Shortcut SmartScreen Bypass Vulnerability
      - IPS Version: 3.9.5 and after.
      - TPS Version: 5.2.2 and after.
      - vTPS Version: 5.2.2 and after.
      - Category: Exploits
      - Severity: Critical
      - Description: This filter detects an attempt to exploit a security bypass vulnerability in Microsoft Windows SmartScreen.
      - Deployments:
        - Deployment: Default (Block / Notify)
      - References:
        - Common Vulnerabilities and Exposures: CVE-2023-36025
      - Classification: Vulnerability - Other
      - Protocol: HTTP
      - Platform: Windows Client Application
      - Release Date: January 17, 2024

    43701: ZDI-CAN-23100: Zero Day Initiative Vulnerability (Microsoft Windows SmartScreen)
      - IPS Version: 3.9.5 and after.
      - TPS Version: 5.2.2 and after.
      - vTPS Version: Not available.
      - Requires: IPS N-Platform, NX-Platform, or TPS models.
      - Category: Vulnerabilities
      - Severity: Critical
      - Description: This filter protects against exploitation of a zero-day vulnerability affecting Microsoft Windows SmartScreen.
      - Deployments:
        - Deployment: Default (Block / Notify / Trace)
      - Classification: Vulnerability - Other
      - Protocol: Other Protocol
      - Platform: Other Server Application or Service
      - Release Date: January 17, 2024
            
  Modified Filters (logic changes): None

  Modified Filters (metadata changes only): None
  
  Removed Filters: None

Was this article helpful?

Featured

Automation Center

Education Portal

Online Help Center

Service Status

TrendConnect

Digital Vaccine #9866 OOB

Digital Vaccine #9866 OOB

Product / Version includes:

Summary