Rule Update

20-008 (February 11, 2020)


  DESCRIPTION

* indicates a new version of an existing rule

Deep Packet Inspection Rules:

Remote Desktop Protocol Client
1010150 - Microsoft Windows Remote Desktop Client Remote Code Execution Vulnerability (CVE-2020-0681)


Remote Desktop Protocol Server
1009749* - Microsoft Windows Remote Desktop Services Remote Code Execution Vulnerability (CVE-2019-0708)


Web Application Common
1010151 - Identified Usage Of 'X-JsonProxySecurityContext' HTTP Header


Web Client Common
1010148 - Adobe Acrobat And Reader Multiple Security Vulnerabilities (APSB20-05) - 1
1010149 - Adobe Acrobat And Reader Multiple Security Vulnerabilities (APSB20-05) - 2
1010153 - Adobe Flash Player Type Confusion Vulnerability (CVE-2020-3757)
1010147 - Fuji Electric V-Server Heap-based Buffer Overflow Vulnerability (CVE-2019-18240)


Web Client HTTPS
1010132* - Microsoft Windows CryptoAPI Spoofing Vulnerability (CVE-2020-0601) - 1


Web Client Internet Explorer/Edge
1010003* - Microsoft Internet Explorer Scripting Engine Memory Corruption Vulnerability (CVE-2019-1367)
1010133* - Microsoft Internet Explorer Scripting Engine Memory Corruption Vulnerability (CVE-2020-0674)


Web Server Common
1010135* - ELOG Project ELOG Information Disclosure Vulnerability (CVE-2019-3993)
1010128* - IBM Bigfix Platform Arbitrary File Upload Vulnerability (CVE-2019-4013)


Integrity Monitoring Rules:

There are no new or updated Integrity Monitoring Rules in this Security Update.


Log Inspection Rules:

There are no new or updated Log Inspection Rules in this Security Update.