Rule Update

17-046 (September 19, 2017)


  DESCRIPTION

* indicates a new version of an existing rule

Deep Packet Inspection Rules:

Backup Server Veritas
1008584 - Veritas Backup Exec Windows Remote File Access (CVE-2005-2611)


DCERPC Services - Client
1008585 - Microsoft Windows LNK Remote Code Execution Over SMB (CVE-2017-8464)


Directory Server LDAP
1008453* - OpenLDAP ldapsearch pagesize Double Free Denial Of Service Vulnerability (CVE-2017-9287)


Web Application Common
1008512* - ImageMagick Denial Of Service Vulnerability (CVE-2017-9261) - 1
1008514* - ImageMagick Denial Of Service Vulnerability (CVE-2017-9262) - 1
1008508* - ImageMagick Heap-Based Buffer Overflow Vulnerability (CVE-2017-10928) - 1
1008540* - ImageMagick ReadMATImage Information Disclosure Vulnerability (CVE-2017-11644) - 1
1008542* - ImageMagick ReadMATImage Information Disclosure Vulnerability (CVE-2017-11724) - 1
1008510 - ImageMagick ReadPESImage Denial Of Service Vulnerability (CVE-2017-11446) - 1


Web Client Common
1008613 - Adobe Flash Player Multiple Security Vulnerabilities (APSB17-28)
1008509 - ImageMagick ReadPESImage Denial Of Service Vulnerability (CVE-2017-11446)
1008616 - Microsoft Internet Explorer And Edge Scripting Engine Memory Corruption Vulnerability (CVE-2017-8641)
1008199 - Microsoft Win32k Elevation Of Privilege Vulnerability (CVE-2016-3219)
1008604* - Microsoft Windows .NET Framework Remote Code Execution Vulnerability (CVE-2017-8759)
1008198 - Microsoft Windows Kernel Elevation Of Privilege Vulnerability (CVE-2016-0180)
1008435* - Microsoft Windows LNK Remote Code Execution Vulnerability (CVE-2017-8464)
1008612 - Microsoft Windows LNK Remote Code Execution Vulnerability Over WebDAV (CVE-2017-8464)
1008200 - Microsoft Windows Multiple Elevation Of Privilege Vulnerabilities (MS16-073)
1008265 - Microsoft Windows Multiple Elevation Of Privilege Vulnerabilities (MS16-098)
1008259 - Microsoft Windows Multiple Security Vulnerabilities (MS16-090)


Web Client Internet Explorer/Edge
1008568 - Microsoft Internet Explorer And Edge Scripting Engine Memory Corruption Vulnerability (CVE-2017-8635)
1008569 - Microsoft Internet Explorer And Edge Scripting Engine Memory Corruption Vulnerability (CVE-2017-8636)


Web Server Common
1004859* - Disallowed HTTP Header


Integrity Monitoring Rules:

There are no new or updated Integrity Monitoring Rules in this Security Update.


Log Inspection Rules:

There are no new or updated Log Inspection Rules in this Security Update.