Rule Update
18-034 (June 25, 2018)
Publish date: June 25, 2018
DESCRIPTION
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
Advanced Message Queuing Protocol (AMQP)
1009126 - Pivotal Spring AMQP Remote Code Execution Vulnerability (CVE-2017-8045)
Directory Server LDAP
1008555* - Microsoft Windows Active Directory Denial Of Service Vulnerability (CVE-2008-1445)
VoIP Smart
1008941 - Asterisk 'chan_pjsip' SDP Format Denial Of Service Vulnerability
Web Application Common
1008966 - ImageMagick Multiple Security Vulnerabilities (Server) - 1
1008968 - ImageMagick Multiple Security Vulnerabilities (Server) - 2
1008957 - ImageMagick Multiple Security Vulnerabilities (Server) - 8
1008953 - ImageMagick Multiple Security Vulnerabilities (Server) - 9
1009151 - Pivotal Spring PATCH Requests Remote Code Execution (CVE-2017-8046)
Web Application PHP Based
1008818 - PHP WDDX Packet XML Document Invalid Read Vulnerability (CVE-2016-9935)
Web Client Common
1009097* - Adobe Acrobat And Reader Multiple Security Vulnerabilities (APSB18-09) - 7
1009144* - Adobe Flash Player Remote Code Execution Vulnerability (CVE-2018-5002)
1008965 - ImageMagick Multiple Security Vulnerabilities (Client) - 1
1008967 - ImageMagick Multiple Security Vulnerabilities (Client) - 2
1008956 - ImageMagick Multiple Security Vulnerabilities (Client) - 8
1008952 - ImageMagick Multiple Security Vulnerabilities (Client) - 9
Web Client Internet Explorer/Edge
1009068* - Microsoft Edge Memory Corruption Vulnerability (CVE-2018-8179)
1009141* - Microsoft Internet Explorer Scripting Engine Memory Corruption Vulnerability (CVE-2018-8267)
Web Server Miscellaneous
1005825* - Nginx Crafted URI String Handling Access Restriction Bypass Vulnerability (CVE-2013-4547)
Web Server Oracle
1008688* - Oracle Identity Manager Default Account Vulnerability (CVE-2017-10151)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Deep Packet Inspection Rules:
Advanced Message Queuing Protocol (AMQP)
1009126 - Pivotal Spring AMQP Remote Code Execution Vulnerability (CVE-2017-8045)
Directory Server LDAP
1008555* - Microsoft Windows Active Directory Denial Of Service Vulnerability (CVE-2008-1445)
VoIP Smart
1008941 - Asterisk 'chan_pjsip' SDP Format Denial Of Service Vulnerability
Web Application Common
1008966 - ImageMagick Multiple Security Vulnerabilities (Server) - 1
1008968 - ImageMagick Multiple Security Vulnerabilities (Server) - 2
1008957 - ImageMagick Multiple Security Vulnerabilities (Server) - 8
1008953 - ImageMagick Multiple Security Vulnerabilities (Server) - 9
1009151 - Pivotal Spring PATCH Requests Remote Code Execution (CVE-2017-8046)
Web Application PHP Based
1008818 - PHP WDDX Packet XML Document Invalid Read Vulnerability (CVE-2016-9935)
Web Client Common
1009097* - Adobe Acrobat And Reader Multiple Security Vulnerabilities (APSB18-09) - 7
1009144* - Adobe Flash Player Remote Code Execution Vulnerability (CVE-2018-5002)
1008965 - ImageMagick Multiple Security Vulnerabilities (Client) - 1
1008967 - ImageMagick Multiple Security Vulnerabilities (Client) - 2
1008956 - ImageMagick Multiple Security Vulnerabilities (Client) - 8
1008952 - ImageMagick Multiple Security Vulnerabilities (Client) - 9
Web Client Internet Explorer/Edge
1009068* - Microsoft Edge Memory Corruption Vulnerability (CVE-2018-8179)
1009141* - Microsoft Internet Explorer Scripting Engine Memory Corruption Vulnerability (CVE-2018-8267)
Web Server Miscellaneous
1005825* - Nginx Crafted URI String Handling Access Restriction Bypass Vulnerability (CVE-2013-4547)
Web Server Oracle
1008688* - Oracle Identity Manager Default Account Vulnerability (CVE-2017-10151)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Featured Stories
- The Mirage of AI Programming: Hallucinations and Code IntegrityThe adoption of large language models (LLMs) and Generative Pre-trained Transformers (GPTs), such as ChatGPT, by leading firms like Microsoft, Nuance, Mix and Google CCAI Insights, drives the industry towards a series of transformative changes. As the use of these new technologies becomes prevalent, it is important to understand their key behavior, advantages, and the risks they present.Read more
- Open RAN: Attack of the xAppsThis article discusses two O-RAN vulnerabilities that attackers can exploit. One vulnerability stems from insufficient access control, and the other arises from faulty message handlingRead more
- A Closer Exploration of Residential Proxies and CAPTCHA-Breaking ServicesThis article, the final part of a two-part series, focuses on the details of our technical findings and analyses of select residential proxies and CAPTCHA-solving services.Read more
- How Residential Proxies and CAPTCHA-Solving Services Become Agents of AbuseThis article, the first of a two-part series, provides insights on how abusers and cybercriminals use residential proxies and CAPTCHA-solving services to enable bots, scrapers, and stuffers, and proposes security countermeasures for organizations.Read more