Rule Update
16-034 (November 3, 2016)
DESCRIPTION
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
DNS Client
1007458* - glibc getaddrinfo Stack Based Buffer Overflow Vulnerability (CVE-2015-7547)
Web Client Common
1008003* - Adobe Flash Player Use-After-Free Vulnerability (CVE-2016-7855)
1008033 - Microsoft Windows Elevation Of Privilege Vulnerability
1007929* - Microsoft Windows PDF Library Remote Code Execution Vulnerability (CVE-2016-3370)
1007930* - Microsoft Windows PDF Library Remote Code Execution Vulnerability (CVE-2016-3374)
Web Client Internet Explorer/Edge
1007923* - Microsoft Internet Explorer And Edge Information Disclosure Vulnerability (CVE-2016-3325)
Web Server Common
1000128* - HTTP Protocol Decoding
1005496* - Identified HTTP Request Smuggling Attack
Web Server HTTPS
1007253* - Trend Micro Threat Intelligence Manager Multiple Vulnerabilities Remote Code Execution
Web Server Miscellaneous
1007522* - JBoss Seam Parameterized EL Expressions Remote Code Execution Vulnerability
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Deep Packet Inspection Rules:
DNS Client
1007458* - glibc getaddrinfo Stack Based Buffer Overflow Vulnerability (CVE-2015-7547)
Web Client Common
1008003* - Adobe Flash Player Use-After-Free Vulnerability (CVE-2016-7855)
1008033 - Microsoft Windows Elevation Of Privilege Vulnerability
1007929* - Microsoft Windows PDF Library Remote Code Execution Vulnerability (CVE-2016-3370)
1007930* - Microsoft Windows PDF Library Remote Code Execution Vulnerability (CVE-2016-3374)
Web Client Internet Explorer/Edge
1007923* - Microsoft Internet Explorer And Edge Information Disclosure Vulnerability (CVE-2016-3325)
Web Server Common
1000128* - HTTP Protocol Decoding
1005496* - Identified HTTP Request Smuggling Attack
Web Server HTTPS
1007253* - Trend Micro Threat Intelligence Manager Multiple Vulnerabilities Remote Code Execution
Web Server Miscellaneous
1007522* - JBoss Seam Parameterized EL Expressions Remote Code Execution Vulnerability
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.