*** NK8 RELS 3364 Release *** Total number of signatures: 3233 Description ================================================================== In this signature, we addressed the exploits/vulnerabilities and applications as below: Added 7 rule(s): --------------- 1134397 WEB Kaltura Remote PHP Code Execution over Cookie (CVE-2017-14143) 1134399 WEB GoAhead Web Server LD_PRELOAD Arbitrary Module Load (CVE-2017-17562) 1134415 WEB HPE Moonshot Provisioning Manager Appliance server_response Directory Traversal -1.u (CVE-2017-8977) 1134420 WEB Trend Micro Mobile Security Enterprise get_dep_profile id SQL Injection -1.u (CVE-2017-14078) 1134423 WEB AsusWRT LAN Unauthenticated Remote Code Execution 1134425 WEB Node.js Foundation Node.js zlib windowBits Denial of Service -1.1 (CVE-2017-14919) 1134427 WEB ASUS DSL-N14U B1 XXE Vulnerabilities Modified 1 rule(s): --------------- 1131593 MISC MSF Generic Payload Delivery Deleted 13 rule(s): --------------- 1131061 SSL OpenSSL DHE Client Key Exchange Denial of Service (CVE-2015-1787) (old rule) 1131078 WEB Multiple Devices Unauthenticated Remote DNS Change Vulnerability -1 (old rule) 1131079 WEB Belkin Devices Unauthenticated Remote DNS Change Vulnerability (old rule) 1131080 WEB Webcam Devices Unauthenticated Remote DNS Change Vulnerability (old rule) 1131083 WEB Mutilple Devices Unauthenticated Remote DNS Change Vulnerability -2 (old rule) 1131084 WEB Mutilple Devices Unauthenticated Remote DNS Change Vulnerability -3 (old rule) 1131085 WEB Mutilple Devices Unauthenticated Remote DNS Change Vulnerability -4 (old rule) 1131086 WEB Mutilple Devices Unauthenticated Remote DNS Change Vulnerability -5 (old rule) 1131088 WEB ASUS RT-N66U Devices Unauthenticated Remote DNS Change Vulnerability (old rule) 1131089 WEB ASUS RT-N56U Devices Unauthenticated Remote DNS Change Vulnerability (old rule) 1131110 WEB-CLIENT Generic Javascript Obfuscation -30 (old rule) 1131118 WEB-CLIENT Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2015-1687) (old rule) 1131554 WEB-CLIENT Suspicious HTML Iframe Tag -4 (old rule)