*** NK8 RELS 3420 Release *** Total number of signatures: 3212 Description ================================================================== In this signature, we addressed the exploits/vulnerabilities and applications as below: Added 3 rule(s): --------------- 1135427 WEB Nuxeo NuxeoUnknownResource Expression Language Injection -1 (CVE-2018-16341) 1135428 WEB Nuxeo NuxeoUnknownResource Expression Language Injection -2 (CVE-2018-16341) 1135429 WEB Jquery File Upload Arbitrary File Upload (CVE-2018-9206) Modified 2 rule(s): --------------- 1134972 FILE Microsoft Windows Shell SettingContent-ms Remote Code Execution (CVE-2018-8414) 1135420 WEB Drupal REST Module Remote Code Execution (CVE-2019-6340) Deleted 12 rule(s): --------------- 1056588 WEB-ACTIVEX Oracle AutoVue 20.0.1 AutoVueX ActiveX Control SaveViewStateToFile Vulnerability -1 (EDB-18016) (old rule) 1056921 FTP Freefloat FTP Server Invalid Command Buffer Overflow -1 (BID:48704) (old rule) 1057872 WEB InstantCMS 1.6 Remote PHP Code Execution (BID-60816) (old rule) 1059471 EXPLOIT Acunetix 8 build 20120704 - Remote Stack Based Overflow (CVE-2014-2994) (old rule) 1059488 SSL GnuTLS Certificate Verification Policy Bypass -1 (CVE-2014-0092) (old rule) 1059510 FILE Adobe Reader Mobile JavaScript Interface Java Code Execution -1 (CVE-2014-0514) (old rule) 1059523 SCADA Yokogawa CS3000 BKESimmgr.exe Buffer Overflow (CVE-2014-0782) (old rule) 1059533 WEB-CLIENT Microsoft Internet Explorer CVE-2014-1795 Memory Corruption (CVE-2014-1795) (old rule) 1059536 WEB-CLIENT Microsoft Internet Explorer CVE-2014-1789 Memory Corruption -1 (CVE-2014-1789) (old rule) 1059554 WEB Broadcom PIPA C211 Sensitive Information Disclosure (CVE-2014-2046) (old rule) 1059561 WEB Easy File Sharing Web Server 6.8 - Stack Buffer Overflow (CVE-2014-3791) (old rule) 1059568 FILE Microsoft Word RTF listoverridecount Memory Corruption -2 (CVE-2014-1761) (old rule)