Rule Update
19-045 (September 3, 2019)
DESCRIPTION
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
HP Intelligent Management Center (IMC)
1009951 - HPE Intelligent Management Center TopoMsgServlet 'className' Expression Language Injection Vulnerability (CVE-2019-11942)
Redis Server
1009954 - Redis Stack Buffer Overflow Vulnerability (CVE-2018-11218)
Remote Desktop Protocol Server
1009958 - Microsoft Windows RDP Remote Code Execution Vulnerability (CVE-2019-1181)
1009961 - Microsoft Windows RDP Remote Code Execution Vulnerability (CVE-2019-1182)
Web Server Adobe ColdFusion
1009897 - Adobe ColdFusion CFFILE Upload Action Unrestricted File Upload Vulnerability (CVE-2019-7838)
Webmin
1009948 - Webmin Remote Command Execution Vulnerability (CVE-2019-9624)
Zoho ManageEngine
1009957 - Zoho ManageEngine Application Manager Remote Command Execution Vulnerability (CVE-2019-15105)
1009960 - Zoho ManageEngine OpManager Remote Command Execution Vulnerability (CVE-2019-15104)
1009955 - Zoho ManageEngine OpManager Unauthenticated Remote Command Execution Vulnerability (CVE-2019-15106)
Integrity Monitoring Rules:
1003138* - Microsoft Windows - Active Directory
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Deep Packet Inspection Rules:
HP Intelligent Management Center (IMC)
1009951 - HPE Intelligent Management Center TopoMsgServlet 'className' Expression Language Injection Vulnerability (CVE-2019-11942)
Redis Server
1009954 - Redis Stack Buffer Overflow Vulnerability (CVE-2018-11218)
Remote Desktop Protocol Server
1009958 - Microsoft Windows RDP Remote Code Execution Vulnerability (CVE-2019-1181)
1009961 - Microsoft Windows RDP Remote Code Execution Vulnerability (CVE-2019-1182)
Web Server Adobe ColdFusion
1009897 - Adobe ColdFusion CFFILE Upload Action Unrestricted File Upload Vulnerability (CVE-2019-7838)
Webmin
1009948 - Webmin Remote Command Execution Vulnerability (CVE-2019-9624)
Zoho ManageEngine
1009957 - Zoho ManageEngine Application Manager Remote Command Execution Vulnerability (CVE-2019-15105)
1009960 - Zoho ManageEngine OpManager Remote Command Execution Vulnerability (CVE-2019-15104)
1009955 - Zoho ManageEngine OpManager Unauthenticated Remote Command Execution Vulnerability (CVE-2019-15106)
Integrity Monitoring Rules:
1003138* - Microsoft Windows - Active Directory
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.