*** EX RELS 03333 Release *** Total number of signatures: 6029 Description ================================================================== In this signature, we addressed the exploits/vulnerabilities and applications as below: Added 8 rule(s): --------------- 1133800 WEB Easy File Sharing HTTP Server 7.2 POST Buffer Overflow (EDB-42186) 1133802 WEB Netgear NETGEAR DGN2200 dnslookup.cgi Remote Command Injection (CVE-2017-6334 ) 1133812 SMB Microsoft Windows SMB Server SMBv1 CVE-2017-0144 Memory Corruption (CVE-2017-0144) 1160470 SOCIAL Instagram transfer-upload via SSL -1 1160471 SOCIAL Instagram transfer-upload via SSL -2 1160484 MEDIA Youku.com access via TCP -3 1160485 MEDIA Youku.com media via TCP -7 1160499 MEDIA Netflix access via SSL -7 Modified 5 rule(s): --------------- 1054837 WEB Remote File Inclusion /etc/passwd 1059803 RDP Brute Force Login 1065246 MEDIA Netflix media via TCP -2 1130566 SMB PsEXEc Activity 1133467 WEB Wordpress 4.7.0/4.7.1 Unauthenticated Content Injection -1.u Deleted 26 rule(s): --------------- 1056665 EXPLOIT Multiple Apple QuickTime TeXML QuickTime3GPP.qtx Stack Buffer Overflows -1 (CVE-2012-0663) (old rule) 1056709 WEB HP SiteScope SOAP Call APIPreferenceImpl Multiple Security Bypass -1 (CVE-2012-3261) (old rule) 1056943 FILE RealNetworks RealPlayer URL Parsing Stack Buffer Overflow (CVE-2012-5691) (old rule) 1057089 EXPLOIT VMWare OVF Tool Format String Vulnerability -1 (CVE-2012-3569) (old rule) 1057117 WEB-ACTIVEX Novell GroupWise Client for Windows ActiveX Code Execution -1 (CVE-2012-0439) (old rule) 1057127 EXPLOIT BigAnt Server SCH Request Stack Buffer Overflow (CVE-2012-6275) (old rule) 1057128 EXPLOIT BigAnt Server DUPF Command Arbitrary File Upload (CVE-2012-6274) (old rule) 1057186 FILE Microsoft Excel MergeCells Record Parsing Memory Corruption -2 (CVE-2012-0185) (old rule) 1057190 EXPLOIT Apple Quicktime Text Track Descriptors Heap Buffer Overflow -2 (CVE-2012-0664) (old rule) 1057209 FILE Microsoft Windows Object Packager ClickOnce Object Handling Code Execution -2 (CVE-2012-0013) (old rule) 1057212 EXPLOIT Portable SDK for UPnP Devices libupnp Device Service Name Stack Buffer -1 (CVE-2012-5958) (old rule) 1057213 DNS ISC BIND DNS64 RPZ Assertion Failure Denial of Service (CVE-2012-5689) (old rule) 1057227 WEB HP SiteScope SOAP Call APISiteScopeImpl Multiple Information Disclosures (CVE-2012-3259) (old rule) 1057244 FILE Microsoft Excel SerAuxErrBar Heap Overflow Vulnerability -2 (CVE-2012-1885) (old rule) 1057247 EXPLOIT Multiple AntiVirus Products TAR File Scan Evasion Vulnerability (CVE-2012-1427) (old rule) 1057250 EXPLOIT Microsoft Comodo AntiVirus EXE File Scan Evasion Vulnerability (CVE-2012-1437) (old rule) 1057253 EXPLOIT Apple QuickTime TeXML Style Element Text Specification Buffer Overflow -2 (CVE-2012-3752) (old rule) 1057254 EXPLOIT Apple QuickTime TeXML Style Element Text Specification Buffer Overflow -3 (CVE-2012-3752) (old rule) 1057257 EXPLOIT Microsoft Windows C Runtime Library Heap Buffer Overflow -2 (CVE-2012-0150) (old rule) 1057259 EXPLOIT Multiple AntiVirus Products RAR File Scan Evasion Vulnerability (CVE-2012-1443) (old rule) 1057260 FILE Adobe Photoshop PNG Image Processing Buffer Overflow (CVE-2012-4170) (old rule) 1057265 EXPLOIT Multiple AntiVirus Products tar.gz File Scan Evasion Vulnerability (CVE-2012-1460) (old rule) 1057276 WEB-CLIENT Microsoft Internet Explorer Null Byte Information Disclosure -4 (CVE-2012-0012) (old rule) 1057286 WEB Mutiny Remote Command Execution (CVE-2012-3001) (old rule) 1057287 FILE CoolPDF Reader Image Stream Processing Buffer Overflow -1 (CVE-2012-4914) (old rule) 1057288 FILE CoolPDF Reader Image Stream Processing Buffer Overflow -2 (CVE-2012-4914) (old rule)