*** EX RELS 03380 Release ***
Total number of signatures: 6001

Description
==================================================================
In this signature, we addressed the exploits/vulnerabilities
and applications as below:


Added 34 rule(s):
---------------
1057212	EXPLOIT Portable SDK for UPnP Devices libupnp Device Service Name Stack Buffer -1 (CVE-2012-5958)
1057486	EXPLOIT Portable SDK for UPnP Devices libupnp Device Service Name Stack Buffer -2 (CVE-2012-5958)
1057487	EXPLOIT Portable SDK for UPnP Devices libupnp Device Service Name Stack Buffer -3 (CVE-2012-5958)
1058983	WEB Cisco Linksys X3000 Router Apply.Cgi Command Execution Vulnerability -1 (CVE-2013-3307)
1058984	WEB Cisco Linksys X3000 Router Apply.Cgi Command Execution Vulnerability -2 (CVE-2013-3307)
1132726	WEB GD Library libgd gd_gd2.c Heap Buffer Overflow -2 (CVE-2016-3074)
1132727	WEB GD Library libgd gd_gd2.c Heap Buffer Overflow -3 (CVE-2016-3074)
1134004	WEB Netgear WNR2000v5 Information Disclosure (CVE-2016-10176)
1134603	WEB QNAP VioStor NVR firmware version 4.0.3 and QNAP NAS multiple vulnerabilities
1134675	WEB Apache Tika Chmparser Denial Of Service (CVE-2018-1339)
1134677	WEB D-Link DSL-2750B OS Command Injection
1134678	EXPLOIT Pivotal Spring Framework spring-messaging Module STOMP Remote Code Execution -1 (CVE-2018-1270)
1134684	WEB Multiple Vivotek IP Camera Products HTTP Request Remote Code Execution
1134685	WEB Multiple Vivotek IP Camera Products Heap Overflow Vulnerability
1134687	WEB Netgear DGN1000 And Netgear DGN2200 Unauthenticated Command Execution
1134688	WEB Netgear WNR2000 Information Disclosure -1
1134689	WEB Netgear WNR2000 Information Disclosure -2
1134690	WEB Netgear WNR2000 Information Disclosure -3
1134691	WEB Joomla restore.php PHP Code Injection (CVE-2014-7228)
1134692	MALWARE VPNFilter Connect Activity
1134693	TELNET NETGEAR TelnetEnable Magic Packet -1
1134694	TELNET NETGEAR TelnetEnable Magic Packet -2
1134695	WEB NETGEAR DGN2200B Cross Site Scripting -1
1134696	WEB NETGEAR DGN2200B Cross Site Scripting -2
1134697	WEB QNAP QTS X-Forwarded-For Buffer Overflow
1134698	EXPLOIT TP-Link TDDP Multiple Vulnerabilities -1
1134699	EXPLOIT TP-Link TDDP Multiple Vulnerabilities -2
1134700	EXPLOIT Mikrotik RouterOS Denial of Service (CVE-2012-6050)
1134701	EXPLOIT Mikrotik RouterOS CSRF Vulnerability (CVE-2015-2350)
1134702	WEB Akeeba Kickstart restoration.php Information Disclosure (CVE-2014-7229)
1134703	WEB Akeeba Kickstart restoration.php CSRF Vulnerability (CVE-2014-7229)
1160982	MAIL Yahoo access via SSL -1
1160987	TERMINAL Chrome Remote Desktop access via UDP -2
1160988	TERMINAL VNC access via UDP -1

Modified 5 rule(s):
---------------
1063526	MAIL Gmail login via SSL -1
1063739	MAIL Yahoo access via TCP -3
1132610	WEB-CLIENT Javascript Obfuscation in Exploit Kits - 62 (Ransomware Attack Vector)
1132963	WEB Squid Proxy ESI Response Processing Denial of Service (CVE-2016-4555)
1160855	TERMINAL VNC access via SSL -1

Deleted 51 rule(s):
---------------
1055114	EXPLOIT FreeType PostScript Type1 Font Parsing Code Execution -1 (old rule)
1056051	EXPLOIT MPlayer SAMI Subtitle sub_read_line_sami Buffer Overflow (old rule)
1057084	EXPLOIT XML Backslash exploit via TCP (old rule)
1057086	EXPLOIT Microsoft Windows capicom.dll Vulnerability (old rule)
1057120	WEB Microsoft IE Remote Dos vulnerability (old rule)
1057192	EXPLOIT Liquid XML Studio 2010 OpenFile() Remote Overflow Exploit (old rule)
1057194	WEB-ACTIVEX MagnetoSoft DNS v4.0.0.9 ActiveX DNS Lookup Host With Server (old rule)
1057195	WEB JavaScript Alert Function Buffer Overflow -1 (old rule)
1057199	WEB-ACTIVEX MagnetoSoft ICMP v4.0.0.18 ActiveX AddDestinationEntry Buffer Overflow (EDB-12202) (old rule)
1057204	WEB-ACTIVEX MagnetoSoft NetworkResources v4.0.0.5 ActiveX NetFileClose SEH Overwrite (EDB-12206) (old rule)
1057205	WEB-ACTIVEX MagnetoSoft NetworkResources v4.0.0.5 ActiveX NetSessionDel Buffer Overflow (EDB-12205) (old rule)
1057206	WEB-ACTIVEX MagnetoSoft SNTP v4.0.0.7 ActiveX SntpGetReply Buffer Overflow (old rule)
1057207	WEB-ACTIVEX MagnetoSoft SNTP v4.0.0.7 ActiveX SntpSendRequest Crash (EDB-12204) (old rule)
1057225	EXPLOIT Netop Remote Control dws File Stack Buffer Overflow -2 (old rule)
1057249	WEB OpenPLI Webif Arbitrary Command Execution (BID-57943) (old rule)
1057272	FILE Microsoft Office Word 2003 and 2007 Cross Site Scripting Vulnerability (old rule)
1057296	EXPLOIT SAP NetWeaver AdIExecBlkConv Message Server Buffer Overflow (CVE-2013-1593) (old rule)
1057304	DB Oracle Outside In Paradox Database Stream Filter Denial of Service (CVE-2013-0393) (old rule)
1057305	WEB-CLIENT Opera SVG clipPath Use After Free Memory Corruption (CVE-2013-1638) (old rule)
1057308	FILE Adobe Flash Player Regular Expression Heap Buffer Overflow -3 (CVE-2013-0634) (old rule)
1057309	FILE Adobe Acrobat and Reader XFA oneOfChild Remote Code Execution -1 (CVE-2013-0640) (old rule)
1057310	FILE Adobe Acrobat and Reader XFA oneOfChild Remote Code Execution -2 (CVE-2013-0640) (old rule)
1057315	EXPLOIT Microsoft Windows NFS Server NULL Pointer Dereference (CVE-2013-1281) (old rule)
1057317	EXPLOIT SAP NetWeaver Message Server Memory Corruption -1 (CVE-2013-1592) (old rule)
1057318	EXPLOIT SAP NetWeaver Message Server Memory Corruption -2 (CVE-2013-1592) (old rule)
1057319	WEB Nagios XI Autodiscovery Arbitrary Command Execution -1 (old rule)
1057345	SIP Digium Asterisk HTTP Manager Interface Resource Exhaustion -1 (CVE-2013-2686) (old rule)
1057346	SIP Digium Asterisk HTTP Manager Interface Resource Exhaustion -2 (CVE-2013-2686) (old rule)
1057358	EXPLOIT Sourcefire Snort rule20275eval Buffer Overflow (old rule)
1057363	WEB-CLIENT Microsoft Internet Explorer CTableCell get_cellIndex Information Disclosure (old rule)
1057371	EXPLOIT Novell Sentinel Log Manager Retention Policy Security Restriction Bypass (old rule)
1057372	WEB-CLIENT Microsoft Internet Explorer Mouse Movement Information Disclosure (old rule)
1057374	EXPLOIT Novell File Reporter VOL Tag Buffer Overflow (CVE-2012-4956) (old rule)
1057375	EXPLOIT Novell File Reporter VOL Tag Stack Buffer Overflow (old rule)
1057403	WEB Linksys WRT54GL apply.cgi Command Execution (BID-57459) (old rule)
1057404	WEB D-Link DIR-645, DIR-815 diagnostic.php Command Execution (BID-58938) (old rule)
1057406	WEB Schneider Electric Accutech Manager HTTP Request Processing Buffer Overflow -2 (CVE-2013-0658) (old rule)
1057411	WEB-CLIENT Foxit Reader Plugin for Firefox URL String Stack Buffer Overflow -2 (OSVDB-89030) (old rule)
1057412	EXPLOIT DataLife Engine 9.7 PHP Code Injection Vulnerability (CVE-2013-1412) (old rule)
1057415	WEB-ACTIVEX Siemens SIMATIC WinCC RegReader ActiveX Control Buffer Overflow -2 (CVE-2013-0674) (old rule)
1057416	WEB-ACTIVEX Siemens SIMATIC WinCC RegReader ActiveX Control Buffer Overflow -3 (CVE-2013-0674) (old rule)
1057420	WEB Squid strHdrAcptLangGetItem Value Denial of Service (CVE-2013-1839) (old rule)
1057426	WEB HP System Management Homepage iprange Parameter Code Execution -2 (OSVDB-91812) (old rule)
1090453	WEB IIS 5.0 ISAPI POST Overflow (old rule)
1090461	WEB IIS 5.0 WebDAV ntdll.dll Overflow (old rule)
1110162	DOS CA ARCserve Backup Tape Engine denial of service -1 (old rule)
1110165	VULN CA BrightStor ARCServe Backup LGServer Arbitrary file upload -2 (old rule)
1110176	EXPLOIT CA BrightStor ARCserve Backup XDR Parsing buffer overflow -1 (old rule)
1110178	DOS CA eTrust Intrusion Detection Encryption Key Handling denial of service -1 (old rule)
1112569	WEB-ACTIVEX Office OCX Multiple ActiveX Controls OpenWebFile Arbitrary Program Execution Vulnerability -4 (BID-33243) (old rule)
1112586	WEB-CLIENT Microsoft Internet Explorer Uninitialized Layout Memory Corruption (CVE-2008-3475) (old rule)