Rule Update

17-035 (July 25, 2017)


  DESCRIPTION

* indicates a new version of an existing rule

Deep Packet Inspection Rules:

BIND RNDC
1008321* - ISC BIND Remote Denial Of Service Vulnerability (CVE-2017-3138)


DCERPC Services
1008227* - Microsoft Windows SMB Information Disclosure Vulnerability (CVE-2017-0147)


HP Intelligent Management Center (IMC)
1008469 - HPE Intelligent Management Center CommonUtils ZIP Directory Traversal Vulnerability (CVE-2017-5793)


Unix RPC Services
1008433* - Solaris Calendar Manager Service Daemon (rpc.cmsd) Remote Code Execution Vulnerability


VoIP Soft Phones
1008430 - Asterisk Long Contact URIs REGISTER Requests Denial Of Service Vulnerability


Web Application Common
1008451* - ImageMagick 'MagickCore/blob.c' ReadOneJNGImage Assertion Vulnerability (CVE-2017-9142) - 1
1008450* - ImageMagick 'MagickCore/profile.c' ReadDDSImage Assertion Vulnerability (CVE-2017-9141) - 1
1008415 - ImageMagick 'pict.c' Denial Of Service Vulnerability (CVE-2017-8353)
1008449* - ImageMagick ART File 'coders/art.c' ReadARTImage Denial Of Service Vulnerability (CVE-2017-9143) - 1
1008496 - ImageMagick Denial Of Service Vulnerability (CVE-2017-9407) - 1
1008499 - ImageMagick Denial Of Service Vulnerability (CVE-2017-9439) - 1
1008500 - ImageMagick Denial Of Service Vulnerability (CVE-2017-9440) - 1
1008418 - ImageMagick Memory Corruption Vulnerability (CVE-2016-8862)


Web Application PHP Based
1008409 - PHP exif_process_IFD_in_TIFF Function Memory Leak Vulnerability (CVE-2016-7128)


Web Client Common
1008474 - Foxit Reader Safe Mode Bypass Information Disclosure Vulnerability
1008416 - ImageMagick 'pict.c' Denial Of Service Vulnerability (CVE-2017-8353) - 1
1008497 - ImageMagick Denial Of Service Vulnerability (CVE-2017-9407)
1008498 - ImageMagick Denial Of Service Vulnerability (CVE-2017-9439)
1008501 - ImageMagick Denial Of Service Vulnerability (CVE-2017-9440)
1008419 - ImageMagick Memory Corruption Vulnerability (CVE-2016-8862) - 1
1008476 - Microsoft Malware Protection Engine Remote Code Execution Vulnerability (CVE-2017-8558)
1008504 - Microsoft Windows System Information Console Information Disclosure Vulnerability (CVE-2017-8557)


Web Client Mozilla Firefox
1008325 - Mozilla Firefox createImageBitmap Integer Overflow (CVE-2017-5428)


Web Server HTTPS
1008293* - Trend Micro Control Manager Download Multiple Directory Traversal Information Disclosure Vulnerabilities


Web Server Miscellaneous
1008491 - Apache Struts Security Bypass Vulnerability (CVE-2016-4436)


Integrity Monitoring Rules:

There are no new or updated Integrity Monitoring Rules in this Security Update.


Log Inspection Rules:

There are no new or updated Log Inspection Rules in this Security Update.