*** EX RELS 03424 Release ***
Total number of signatures: 6050

Description
==================================================================
In this signature, we addressed the exploits/vulnerabilities
and applications as below:


Added 15 rule(s):
---------------
1135488	WEB HPE Intelligent Management Center iccSelectCommand Expression Language Injection
1135489	WEB HPE Intelligent Management Center PrimeFaces Expression Language Injection
1135490	UDP TP-Link SR20 Router LAN RCE
1135492	EXPLOIT HPE Intelligent Management Center dbman BackupZipFile Command Injection - 1.3 (CVE-2017-5821)
1135493	EXPLOIT HPE Intelligent Management Center dbman RestartDB Command Injection -1.2 (CVE-2017-5816)
1135494	WEB-CLIENT Microsoft Edge and Internet Explorer Same Origin Policy Information Disclosure
1135495	EXPLOIT HPE Intelligent Management Center imcwlandm SSID Stack Buffer Overflow -2.1 (CVE-2017-5806)
1135496	EXPLOIT HPE Intelligent Management Center imcwlandm SSID Stack Buffer Overflow -2.2 (CVE-2017-5806)
1135497	EXPLOIT HPE Intelligent Management Center imcwlandm SSID Stack Buffer Overflow -2.3 (CVE-2017-5806)
1135498	EXPLOIT HPE Intelligent Management Center imcwlandm UserName Stack Buffer Overflow -1.2 (CVE-2017-5805)
1135499	EXPLOIT HPE Intelligent Management Center imcwlandm UserName Stack Buffer Overflow -1.2 (CVE-2017-5805)
1135500	FILE Meltdown Physical System Memory Dump (CVE-2017-5754)
1135501	WEB-CLIENT Mozilla Firefox http-index-format File Out-Of-Bounds Read -2 (CVE-2017-5444)
1135502	WEB HPE Intelligent Management Center TopoDebugServlet Insecure Deserialization - 1.1
1135504	WEB HPE Intelligent Management Center TopoDebugServlet Insecure Deserialization - 1.2

Modified 12 rule(s):
---------------
1056687	WEB-CLIENT Generic Javascript Obfuscation -5
1056721	WEB-CLIENT Generic Javascript Obfuscation -7
1060272	UPDATE Avast access via TCP -2
1068627	UPDATE Avast transfer via TCP -1
1068629	UPDATE Avast access via TCP -1
1130667	WEB-CLIENT Generic Javascript Obfuscation -25
1133554	EXPLOIT Oracle WebLogic Server UnicastRef Insecure Deserialization (CVE-2017-3248)
1133798	WEB-CLIENT Mozilla Firefox http-index-format File Out-Of-Bounds Read -1 (CVE-2017-5444)
1133903	EXPLOIT HPE Intelligent Management Center imcwlandm UserName Stack Buffer Overflow -1.1 (CVE-2017-5805)
1133904	EXPLOIT HPE Intelligent Management Center imcwlandm SSID Stack Buffer Overflow -1 (CVE-2017-5806)
1134733	SMTP Dovecot rfc822_parse_domain Out of Bounds Read (CVE-2017-14461)
1135368	WEB Cisco RV320 Dual Gigabit WAN VPN Router Command Injection (CVE-2019-1652)

Deleted 0 rule(s):
---------------