18-034 (June 25, 2018)

* indicates a new version of an existing rule

Deep Packet Inspection Rules:

Advanced Message Queuing Protocol (AMQP)
1009126 - Pivotal Spring AMQP Remote Code Execution Vulnerability (CVE-2017-8045)


Directory Server LDAP
1008555* - Microsoft Windows Active Directory Denial Of Service Vulnerability (CVE-2008-1445)


VoIP Smart
1008941 - Asterisk 'chan_pjsip' SDP Format Denial Of Service Vulnerability


Web Application Common
1008966 - ImageMagick Multiple Security Vulnerabilities (Server) - 1
1008968 - ImageMagick Multiple Security Vulnerabilities (Server) - 2
1008957 - ImageMagick Multiple Security Vulnerabilities (Server) - 8
1008953 - ImageMagick Multiple Security Vulnerabilities (Server) - 9
1009151 - Pivotal Spring PATCH Requests Remote Code Execution (CVE-2017-8046)


Web Application PHP Based
1008818 - PHP WDDX Packet XML Document Invalid Read Vulnerability (CVE-2016-9935)


Web Client Common
1009097* - Adobe Acrobat And Reader Multiple Security Vulnerabilities (APSB18-09) - 7
1009144* - Adobe Flash Player Remote Code Execution Vulnerability (CVE-2018-5002)
1008965 - ImageMagick Multiple Security Vulnerabilities (Client) - 1
1008967 - ImageMagick Multiple Security Vulnerabilities (Client) - 2
1008956 - ImageMagick Multiple Security Vulnerabilities (Client) - 8
1008952 - ImageMagick Multiple Security Vulnerabilities (Client) - 9


Web Client Internet Explorer/Edge
1009068* - Microsoft Edge Memory Corruption Vulnerability (CVE-2018-8179)
1009141* - Microsoft Internet Explorer Scripting Engine Memory Corruption Vulnerability (CVE-2018-8267)


Web Server Miscellaneous
1005825* - Nginx Crafted URI String Handling Access Restriction Bypass Vulnerability (CVE-2013-4547)


Web Server Oracle
1008688* - Oracle Identity Manager Default Account Vulnerability (CVE-2017-10151)


Integrity Monitoring Rules:

There are no new or updated Integrity Monitoring Rules in this Security Update.


Log Inspection Rules:

There are no new or updated Log Inspection Rules in this Security Update.