17-029 (June 20, 2017)

* indicates a new version of an existing rule

Deep Packet Inspection Rules:

DNS Server
1008332* - Microsoft DNS Server Denial Of Service Vulnerability (CVE-2017-0171)


Database MySQL
1008330* - MySQL Denial Of Service Vulnerability (CVE-2017-3599)


HP Intelligent Management Center (IMC)
1008329* - HP Intelligent Management Center RedirectServlet 'parafile' Directory Traversal Vulnerability
1008379 - HP Intelligent Management Center Service Information Disclosure Vulnerability (CVE-2017-5797)
1008296* - HP Intelligent Management Center UrlAccessController Filter Authentication Bypass Vulnerability


Mail Server Lotus Domino
1008310* - IBM Lotus Domino Server Stack Buffer Overflow Vulnerability (CVE-2017-1274)


OpenSSL
1008270* - OpenSSL ChaCha20/Poly1305 Cipher Suite Heap Buffer Overflow Vulnerability (CVE-2016-7054)


Unix RPC Services
1008371* - rpcbind Remote Denial Of Service Vulnerability (CVE-2017-8779)


Web Application PHP Based
1008391* - PHPMailer Remote Code Execution Vulnerability
1008411* - WordPress Tracking Code Manager Plugin Denial Of Service Vulnerability


Web Client Common
1008456 - Adobe Flash Player Multiple Security Vulnerabilities (APSB17-17)
1008462 - Google Chrome V8 Private Property Arbitrary Code Execution Vulnerability (CVE-2016-9651)
1008460 - Microsoft Windows Graphics Information Disclosure Vulnerability (CVE-2017-8532)
1008461 - Microsoft Windows Uniscribe Information Disclosure Vulnerability (CVE-2017-0285)
1008458 - VideoLAN VLC Heap Based Buffer Overflow Vulnerability (CVE-2017-8311)


Web Server Oracle
1008378 - Oracle WebLogic Server Untrusted Data Deserialization Vulnerability (CVE-2017-3248)


Web Server Squid
1005303* - Squid 'cachemgr.cgi' Remote Denial Of Service Vulnerability


Integrity Monitoring Rules:

There are no new or updated Integrity Monitoring Rules in this Security Update.


Log Inspection Rules:

There are no new or updated Log Inspection Rules in this Security Update.