ruleUpdate
25-001 (07 janvier 2025)
Description
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
Asterisk Manager Interface
1012231 - Identified Asterisk 'Originate' Action With 'SET' Application System Command Execution
Directory Client LDAP
1012240 - Microsoft Windows Active Directory Denial of Service Vulnerability (CVE-2024-49113)
Progress WhatsUp Gold
1012239 - Progress WhatsUp Gold SQL Injection Vulnerability (CVE-2024-46907)
1012236 - Progress WhatsUp Gold SQL Injection Vulnerability (CVE-2024-46908)
SolarWinds Access Rights Manager
1012024* - SolarWinds Access Rights Manager Directory Traversal Vulnerability (CVE-2024-23477 & CVE-2024-23479)
Unix Samba
1012216 - Linux Kernel KSMBD Information Disclosure Vulnerability (CVE-2023-39176)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Deep Packet Inspection Rules:
Asterisk Manager Interface
1012231 - Identified Asterisk 'Originate' Action With 'SET' Application System Command Execution
Directory Client LDAP
1012240 - Microsoft Windows Active Directory Denial of Service Vulnerability (CVE-2024-49113)
Progress WhatsUp Gold
1012239 - Progress WhatsUp Gold SQL Injection Vulnerability (CVE-2024-46907)
1012236 - Progress WhatsUp Gold SQL Injection Vulnerability (CVE-2024-46908)
SolarWinds Access Rights Manager
1012024* - SolarWinds Access Rights Manager Directory Traversal Vulnerability (CVE-2024-23477 & CVE-2024-23479)
Unix Samba
1012216 - Linux Kernel KSMBD Information Disclosure Vulnerability (CVE-2023-39176)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.