*** NK8 RELS 3349 Release *** Total number of signatures: 3204 Description ================================================================== In this signature, we addressed the exploits/vulnerabilities and applications as below: Added 8 rule(s): --------------- 1134099 EXPLOIT Arbitrary Code Injection -1.x 1134100 WEB Symantec Messaging Gateway Directory Traversal -1 (CVE-2012-4347) 1134104 FILE Adobe Flash Player BufferControlParameters Memory Corruption (CVE-2017-11292) 1134107 FILE dobe Flash Player APSB17-07 Multiple Use After Free Remote Code Execution (CVE-2017-3001) 1134112 FILE Windows LNK Shortcut File Code Execution (CVE-2017-8464) 1134114 FILE Windows NTFS File System MFT Malformed Path Denial of Service -2 1134115 WEB-CLIENT Google Chrome V8 Crankshaft Type Confusion -1 (CVE-2017-5070) 1134117 SMB Microsoft Windows Search Information Disclosure -1 (CVE-2017-8544) Modified 8 rule(s): --------------- 1059981 SSL OpenSSL dtls1_process_out_of_seq_message Denial of Service -1 (CVE-2014-3507) 1063437 MEDIA Sohu TV access via TCP -2.1 1066100 MEDIA Sohu TV access via TCP -2.2 1133451 WEB Cross-site Scripting -36 1133905 SMB Microsoft Windows Search Type Confusion -1 (CVE-2017-8620) 1133906 SMB Microsoft Windows Search Type Confusion -2.1 (CVE-2017-8620) 1133907 SMB Microsoft Windows Search Type Confusion -2.2 (CVE-2017-8620) 1134033 WEB Supervisor XML-RPC Authenticated Remote Code Execution -1 (CVE-2017-11610) Deleted 22 rule(s): --------------- 1056822 RPC ONC-RPC v1 portmap (old rule) 1130055 WEB PHP unserialize Call SPL ArrayObject and SPLObjectStorage Memory Corruption -1 (CVE-2014-3515) (old rule) 1130087 WEB-CLIENT Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2014-4126) (old rule) 1130089 WEB-CLIENT Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2014-4127) (old rule) 1130122 DB Drupal Core database.inc expandArguments SQL Injection -1 (CVE-2014-3704) (old rule) 1130124 WEB-CLIENT Mozilla Firefox DOMSVGLength Reflected Attribute Use-After-Free -1 (CVE-2014-1563) (old rule) 1130132 WEB-CLIENT Microsoft Internet Explorer behavior Property Use After Free -1 (CVE-2014-1775) (old rule) 1130143 EXPLOIT Numara / BMC Track-It! FileStorageService Arbitrary File Upload (CVE-2014-4872) (old rule) 1130163 FILE Microsoft Windows OLE Packer Remote Code Execution -1 (CVE-2014-6352) (old rule) 1130169 DB Drupal Core database.inc expandArguments SQL Injection -2 (CVE-2014-3704) (old rule) 1130171 LPR Xerox Multifunction Printers (MFP) Patch DLM Vulnerability (BID-52483) (old rule) 1130179 WEB Visual Mining NetCharts Server Remote Code Execution -1 (CVE-2014-8516) (old rule) 1130180 WEB-CLIENT Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2014-6353) (old rule) 1130182 WEB-CLIENT Microsoft Internet Explorer Memory Corruption Vulnerability -1 (CVE-2014-6351) (old rule) 1130183 WEB-CLIENT Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2014-4143) (old rule) 1130184 WEB-CLIENT Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2014-6348) (old rule) 1130188 WEB-CLIENT Microsoft Internet Explorer Clipboard Information Disclosure (CVE-2014-6323) (old rule) 1130189 WEB-CLIENT Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2014-6342) (old rule) 1130190 WEB-CLIENT Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2014-6341) (old rule) 1130194 WEB-CLIENT Microsoft Internet Explorer ASLR Bypass Vulnerability (CVE-2014-6339) (old rule) 1132858 WEB-ACTIVEX Schneider Electric ProClima F1BookView Attach Memory Corruption -1 (CVE-2015-7918) (old rule) 1132859 WEB-ACTIVEX Schneider Electric ProClima F1BookView Attach Memory Corruption -2 (CVE-2015-7918) (old rule)