*** EX RELS 03339 Release ***
Total number of signatures: 6037

Description
==================================================================
In this signature, we addressed the exploits/vulnerabilities
and applications as below:


Added 21 rule(s):
---------------
1133874	WEB Cisco Prime Collaboration Provisioning licensestatus.jsp Arbitrary File Deletion -1.a (CVE-2017-6635)
1133875	WEB Cisco Prime Collaboration Provisioning licensestatus.jsp Arbitrary File Deletion -1.x (CVE-2017-6635)
1133876	WEB-CLIENT Suspicious Adobe Flash File Loading -6 (Ransomware Attack Vector)
1133877	WEB Trend Micro IWSVA ManageSRouteSettings HttpServlet Command Injection -1.1
1133878	WEB Trend Micro IWSVA ManageSRouteSettings HttpServlet Command Injection -1.2
1133879	WEB Trend Micro IWSVA ManageSRouteSettings HttpServlet Command Injection -2
1133880	WEB Trend Micro IWSVA ManageSRouteSettings HttpServlet Command Injection -3
1133882	WEB GNU Bash Remote Code Execution -8.x (CVE-2014-6271, Shellshock)
1133883	SCADA Schneider Electric U.motion Builder css.inc.php Arbitrary File Inclusion - 1.a
1133884	SCADA Schneider Electric U.motion Builder css.inc.php Arbitrary File Inclusion - 1.x
1133885	SCADA Schneider Electric U.motion Builder loadtemplate.php SQL Injection - 1.u
1133886	WEB IPFire ids.cgi OINKCODE Parameter Command Injection -1 (CVE-2017-9757)
1133887	WEB IPFire ids.cgi OINKCODE Parameter Command Injection -2 (CVE-2017-9757)
1133888	SCADA Schneider Electric U.motion Builder loadtemplate.php SQL Injection - 1.b
1133889	RADIUS FreeRADIUS data2vp_wimax Heap Buffer Overflow (CVE-2017-10984)
1133890	WEB CloudBees Jenkins Unauthenticated Code Execution (CVE-2017-1000353)
1133891	EXPLOIT Zabbix Server Active Proxy Trapper Command Injection -2 (CVE-2017-2824)
1160585	SOCIAL Instagram access via SSL -3
1160586	FILE Dropbox transfer via SSL -2
1160587	FILE Dropbox access via SSL -3
1160590	MEDIA VLC access via SSL -1

Modified 22 rule(s):
---------------
1053075	TUNNEL CCProxy access via TCP -1
1053076	TUNNEL CCProxy access via TCP -2
1053077	TUNNEL CCProxy access via TCP -3
1053078	TUNNEL CCProxy access via TCP -4
1063977	TUNNEL Phproxy access via TCP -2
1064138	TUNNEL SecurityKISS access via SSL -1
1064139	TUNNEL SecurityKISS access via UDP -1
1067730	FILE 4Shared access via SSL -2
1067755	TUNNEL OpenVPN access via UDP -1
1067756	TUNNEL OpenVPN access via TCP -2
1068062	TUNNEL Phproxy access via TCP -3
1068092	TUNNEL OpenVPN access via TCP -3
1068093	TUNNEL OpenVPN access via UDP -2
1068832	TUNNEL Hola access via TCP -1
1068833	TUNNEL Hola access via SSL -1
1069105	FILE 4Shared access via SSL -1
1069141	TUNNEL CyberGhostVPN access via UDP -1
1130078	WEB GNU Bash Remote Code Execution -8.a (CVE-2014-6271, Shellshock)
1133797	DB Oracle MySQL sql_authentication Integer Overflow -2 (CVE-2017-3599)
1133816	EXPLOIT Zabbix Server Active Proxy Trapper Command Injection -1 (CVE-2017-2824)
1160121	TUNNEL OpenVPN access via UDP -3
1160122	TUNNEL OpenVPN access via TCP -4

Deleted 4 rule(s):
---------------
1063688	WEB Naver login via SSL -1 (old rule)
1066556	WEB Naver login via SSL -2 (old rule)
1066558	WEB Naver access TCP -1 (old rule)
1067166	WEB Naver login via SSL -3 (old rule)