cancel
Showing results for 
Search instead for 
Did you mean: 
evansd
Level 8
Report Inappropriate Content
Message 1 of 3

HIPS 8.0 Threat Name 6045

Hi Guys

We currently busy deploying HIPS 8.0 Patch 2 in our environment and its going well so far.

The problem is that we are getting a lot of Host IPS: Desktop High Triggered Signatures "SMB Brute Force Attack" with Threat severity "Critical"  Threat Name "6045" on mostly Windows XP which are on SP3. Is this something to worry about as i don't see alot articles on this threat event, and if how does one handle it?

Please see attachment.

McAfee products in our environment

ePO 4.6.5

VSE 8.8 P3

HIPS 8.0 Patch 2

Policy Auditor 6.0

Thanks.

Evans

South Africa

2 Replies
Highlighted

Re: HIPS 8.0 Threat Name 6045

This signature came out with the new HIPS content update on 14 April. If you already have HIPS 8 installed on your systems, then started seeing the events, that would explain the sudden appearance of the events. I would just tune the signature as you would normally tune any other one.

McAfee Employee ktankink
McAfee Employee
Report Inappropriate Content
Message 3 of 3

Re: HIPS 8.0 Threat Name 6045

Please see:

KB73399 - FAQs for Host Intrusion Prevention 8.0

Section:

Client IPS/FAQ - IPS Events

Use the following general methodology when assessing IPS signature events:
More McAfee Tools to Help You
  • Subscription Service Notification (SNS)
  • How-to: Endpoint Removal Tool
  • Support: Endpoint Security
  • eSupport: Policy Orchestrator
  • Community Help Hub

      New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

    • Find Forum FAQs
    • Learn How to Earn Badges
    • Ask for Help
    Go to Community Help

    Join the Community

      Thousands of customers use the McAfee Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

    • Get helpful solutions from McAfee experts.
    • Stay connected to product conversations that matter to you.
    • Participate in product groups led by McAfee employees.
    Join the Community
    Join the Community