*** EX RELS 03343 Release *** Total number of signatures: 6027 Description ================================================================== In this signature, we addressed the exploits/vulnerabilities and applications as below: Added 13 rule(s): --------------- 1133936 WEB-CLIENT Microsoft Edge TypedArray.sort Use After Free -2 (CVE-2016-7288) 1133941 WEB-CLIENT Microsoft Internet Explorer Internet Messaging API Information Disclosure -4 (CVE-2016-3298) 1133942 WEB-CLIENT Microsoft Internet Explorer Internet Messaging API Information Disclosure -5 (CVE-2016-3298) 1133943 WEB-CLIENT Microsoft Internet Explorer Internet Messaging API Information Disclosure -6 (CVE-2016-3298) 1133945 DNS Systemd resolved dns_packet_new Heap Buffer Overflow (CVE-2017-9445) 1133949 FILE Microsoft LNK Remote Code Execution Vulnerability -2.1 (CVE-2017-8464) 1133950 FILE JasPer jp2_decode Out of Bounds Read (CVE-2017-9782) 1133951 FILE Microsoft LNK Remote Code Execution Vulnerability -2.2 (CVE-2017-8464) 1133952 WEB PHP gdImageCreateFromGifCtx Out of Bounds Read (CVE-2017-7890) 1133953 SMTP Microsoft Windows OLE CVE-2017-8487 Global Buffer Overflow -1 (CVE-2017-8487) 1133958 WEB Apache Struts Dynamic Method Invocation Remote Code Execution -4.1 1133960 DNS ISC BIND Query Response Missing RRSIG Denial of Service -1 (CVE-2016-9444) 1133964 WEB Apache Struts 2 REST plugin Remote Code Execution (CVE-2017-9805) Modified 9 rule(s): --------------- 1064113 IM Apple iMessage access via SSL -1 1069353 IM WhatsApp login via TCP -3 1133296 WEB-CLIENT Microsoft Edge TypedArray.sort Use After Free -1 (CVE-2016-7288) 1133774 FILE Microsoft LNK Remote Code Execution Vulnerability -1 (CVE-2017-8464) 1133775 WEB-CLIENT Microsoft Edge CAttrArray Object PrivateFindInl Method Type Confusion (CVE-2017-8496) 1133807 FILE Vim modelines Remote Command Execution -3 (CVE-2016-1248) 1133905 SMB Microsoft Windows Search Type Confusion -1 (CVE-2017-8260) 1133906 SMB Microsoft Windows Search Type Confusion -2.1 (CVE-2017-8260) 1133907 SMB Microsoft Windows Search Type Confusion -2.2 (CVE-2017-8260) Deleted 0 rule(s): ---------------