*** EX RELS 03326 Release ***
Total number of signatures: 6033

Description
==================================================================
In this signature, we addressed the exploits/vulnerabilities
and applications as below:


Added 12 rule(s):
---------------
1133680	WEB Intel Active Management Technology Remote Code Execution -1 (CVE-2017-5689)
1133683	WEB-CLIENT Microsoft Scripting Engine Memory Corruption Vulnerability (CVE-2017-0228)
1133686	WEB-CLIENT Microsoft Edge Memory Corruption Vulnerability (CVE-2017-0240)
1133688	FILE Adobe Flash Player Memory Corruption Vulnerability (CVE-2017-3069)
1133696	WEB Microsoft IIS WebDAV ScStoragePathFromUrl Buffer Overflow -2 (CVE-2017-7269)
1133698	WEB Intel Active Management Technology Remote Code Execution -2 (CVE-2017-5689)
1133705	WEB Dahua IPCam Credentials Leak -1 (CVE-2017-6341)
1133706	WEB Dahua IPCam Credentials Leak -2 (CVE-2017-6341)
1133708	WEB GoAhead IPCam Remote Code Execution
1160275	WEB Alibaba.com access via SSL -2
1160310	FILE Box login via SSL -1
1160311	FILE Box transfer-upload via SSL -1

Modified 29 rule(s):
---------------
1054838	WEB Local File Inclusion win.ini -1.u
1059406	SSL OpenSSL TLS DTLS Heartbeat Information Disclosure -1 (CVE-2014-0160, Heartbleed)
1059407	SSL OpenSSL TLS DTLS Heartbeat Information Disclosure -2 (CVE-2014-0160, Heartbleed)
1059408	SSL OpenSSL TLS DTLS Heartbeat Information Disclosure -3 (CVE-2014-0160, Heartbleed)
1059409	SSL OpenSSL TLS DTLS Heartbeat Information Disclosure -4 (CVE-2014-0160, Heartbleed)
1059410	SSL OpenSSL TLS DTLS Heartbeat Information Disclosure -5 (CVE-2014-0160, Heartbleed)
1060513	FILE Box access via SSL -2
1067441	FILE Box access via SSL -3
1068513	FILE Box access via SSL -1
1069448	WEB Alibaba.com access via SSL -1
1130021	WEB GNU Bash Remote Code Execution -1 (CVE-2014-6271, Shellshock)
1130022	WEB GNU Bash Remote Code Execution -2 (CVE-2014-6271, Shellshock)
1130026	SMTP GNU Bash Remote Code Execution (CVE-2014-6271, Shellshock)
1130027	WEB GNU Bash Remote Code Execution -4 (CVE-2014-6271, Shellshock)
1130028	WEB GNU Bash Remote Code Execution -5 (CVE-2014-6271, Shellshock)
1130029	WEB GNU Bash Remote Code Execution -6 (CVE-2014-6271, Shellshock)
1130030	EXPLOIT GNU Bash Remote Code Execution via udp -1 (CVE-2014-6271, Shellshock)
1130031	EXPLOIT GNU Bash Remote Code Execution via udp -2 (CVE-2014-6271, Shellshock)
1130053	WEB GNU Bash Remote Code Execution -3 (CVE-2014-6271, Shellshock)
1130072	SIP GNU Bash Remote Code Execution (CVE-2014-6271, Shellshock)
1130073	WEB GNU Bash Remote Code Execution -7 (CVE-2014-6271, Shellshock)
1130078	WEB GNU Bash Remote Code Execution -8 (CVE-2014-6271, Shellshock)
1133438	WEB-CLIENT Cisco WebEx Chrome Extension Remote Code Execution -1 (CVE-2017-3823)
1133548	WEB Microsoft IIS WebDAV ScStoragePathFromUrl Buffer Overflow -1 (CVE-2017-7269)
1133578	WEB GoAhead system.ini Information Disclosure Vulnerability (CVE-2017-5674)
1133594	FILE Microsoft Office OLE2Link Remote Code Execution (CVE-2017-0199)
1133642	WEB GoAhead system.ini Information Disclosure Vulnerability (CVE-2017-8225)
1133672	WEB Local File Inclusion win.ini -1.b
1133678	SSL OpenSSL ChaCha20-Poly1305 and RC4-MD5 Integer Underflow -1.1 (CVE-2017-3731)

Deleted 1 rule(s):
---------------
1057215	WEB MicrosoftSharePoint Directory Traversal Vulnerability -2 (CVE-2013-0084) (old rule)