ruleUpdate
18-030 (05 de czerwca de 2018)
Publish Date: 06 de czerwca de 2018
DESCRIPTION
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
Web Client Common
1009120 - Adobe Acrobat And Reader XFA 'Submission Handler' Privilege Escalation Vulnerability (CVE-2018-4995)
1008984 - Foxit Reader JPXDecode stream Out-Of-Bounds Write Remote Code Execution Vulnerability
1008742 - IBM Notes Remote Denial Of Service Vulnerability (CVE-2017-1130)
1009088* - Microsoft Windows Multiple Elevation Of Privilege Vulnerabilities (May 2018)
Web Client Internet Explorer/Edge
1009123 - Microsoft Internet Explorer Scripting Engine Information Disclosure Vulnerability (CVE-2018-0981)
1009122 - Microsoft Internet Explorer Scripting Engine Information Disclosure Vulnerability (CVE-2018-0987)
1009121 - Microsoft Internet Explorer Scripting Engine Information Disclosure Vulnerability (CVE-2018-1000)
Web Server Common
1005839* - Identified XML External Entity Injection In HTTP Request
Integrity Monitoring Rules:
1009060 - Kubernetes Cluster Master
Log Inspection Rules:
1002798* - Database Server - PostgreSQL
1009105 - Kubernetes
1002835* - Web Server - Web Access Events
Deep Packet Inspection Rules:
Web Client Common
1009120 - Adobe Acrobat And Reader XFA 'Submission Handler' Privilege Escalation Vulnerability (CVE-2018-4995)
1008984 - Foxit Reader JPXDecode stream Out-Of-Bounds Write Remote Code Execution Vulnerability
1008742 - IBM Notes Remote Denial Of Service Vulnerability (CVE-2017-1130)
1009088* - Microsoft Windows Multiple Elevation Of Privilege Vulnerabilities (May 2018)
Web Client Internet Explorer/Edge
1009123 - Microsoft Internet Explorer Scripting Engine Information Disclosure Vulnerability (CVE-2018-0981)
1009122 - Microsoft Internet Explorer Scripting Engine Information Disclosure Vulnerability (CVE-2018-0987)
1009121 - Microsoft Internet Explorer Scripting Engine Information Disclosure Vulnerability (CVE-2018-1000)
Web Server Common
1005839* - Identified XML External Entity Injection In HTTP Request
Integrity Monitoring Rules:
1009060 - Kubernetes Cluster Master
Log Inspection Rules:
1002798* - Database Server - PostgreSQL
1009105 - Kubernetes
1002835* - Web Server - Web Access Events