*** EX RELS 03320 Release ***
Total number of signatures: 6038

Description
==================================================================
In this signature, we addressed the exploits/vulnerabilities
and applications as below:


Added 10 rule(s):
---------------
1133548	WEB Microsoft IIS WebDAV ScStoragePathFromUrl Buffer Overflow (CVE-2017-7269)
1133552	FILE Adobe Acrobat ImageConversion JPEG Out-of-Bounds Read (CVE-2017-2960)
1133553	WEB-CLIENT Microsoft Internet Explorer CVE-2017-0008 Information Disclosure (CVE-2017-0008)
1133554	EXPLOIT Oracle WebLogic Server UnicastRef Insecure Deserialization (CVE-2017-3248)
1133567	FILE Microsoft Graphics Component CVE-2017-0014 Memory Corruption (CVE-2017-0014)
1133568	FILE Adobe Digital Editions Epub XXE Information Disclosure (CVE-2016-7889)
1133569	WEB-CLIENT Microsoft MSXML CVE-2017-0022 Information Disclosure (CVE-2017-0022)
1160184	GAME Diablo3 transfer via TCP -1
1160185	GAME Diablo3 transfer via TCP -2
1160186	GAME WOW transfer via TCP -2

Modified 16 rule(s):
---------------
1058077	WEB SQL injection attempt -1.b
1060043	GAME Pokemon Go access via SSL -1
1068889	GAME WOW transfer via TCP -1
1133310	WEB Netgear R7000 Command Injection -1.1 (CVE-2016-6277)
1133407	WEB Brute Force Login -1
1133458	WEB-CLIENT JavaScript Heap Exploitation -3
1133463	SSDP Simple Service Discovery Protocol Reflection Denial of Service Vulnerability
1133503	WEB-CLIENT Microsoft Edge CVE-2017-0010 Memory Corruption (CVE-2017-0010)
1133509	WEB-CLIENT JavaScript Heap Exploitation -4.1
1133510	WEB-CLIENT JavaScript Heap Exploitation -5.1
1133511	WEB-CLIENT JavaScript Heap Exploitation -6.1
1133512	WEB-CLIENT JavaScript Heap Exploitation -13
1133520	SMB Microsoft Windows LSASS Authentication Denial of Service -1.1 (CVE-2017-0004)
1133528	WEB Apache Struts 2 Remote Code Execution -1.1 (CVE-2017-5638)
1133529	WEB Apache Struts 2 Remote Code Execution -1.2 (CVE-2017-5638)
1133530	WEB Apache Struts 2 Remote Code Execution -2.1 (CVE-2017-5638)

Deleted 21 rule(s):
---------------
1060047	FILE Docstoc login via TCP -1 (old rule)
1060048	FILE Docstoc login via TCP -2 (old rule)
1060172	TUNNEL Coralcdn connect via TCP -1 (old rule)
1060176	TUNNEL Asproxy connect via TCP -1 (old rule)
1060253	TUNNEL Vedivi login via SSL -1 (old rule)
1062422	TUNNEL Vedivi login via SSL -2 (old rule)
1063294	SOCIAL Tuenti access via TCP -1 (old rule)
1063295	SOCIAL Tuenti login via SSL -1 (old rule)
1063296	SOCIAL Tuenti login via TCP -1 (old rule)
1063297	SOCIAL Hyves access via TCP -1 (old rule)
1063298	SOCIAL Hyves login via SSL -1 (old rule)
1063758	FILE Docstoc transfer-upload via TCP -1 (old rule)
1063759	FILE Docstoc transfer-download via TCP -1 (old rule)
1064187	TUNNEL Asproxy connect via TCP -2 (old rule)
1064189	TUNNEL Vedivi access via TCP -1 (old rule)
1065063	SOCIAL Blogger access via TCP -1 (old rule)
1065064	SOCIAL Blogger access via TCP -2 (old rule)
1065065	SOCIAL Blogger access via TCP -3 (old rule)
1066878	FILE Docstoc access via TCP -1 (old rule)
1067128	FILE Docstoc access via TCP -2 (old rule)
1067129	FILE Docstoc login via SSL -1 (old rule)