*** NK8 RELS 3441 Release *** Total number of signatures: 3163 Description ================================================================== In this signature, we addressed the exploits/vulnerabilities and applications as below: Added 9 rule(s): --------------- 1135872 EXPLOIT Electronic Arts Origin Client URI Handler Remote Code Execution -1.a (CVE-2019-12828) 1135876 WEB Squid Proxy cachemgr.cgi user_name and auth Reflected Cross-Site Scripting -1 (CVE-2019-13345) 1135883 WEB Atlassian JIRA Template Injection Code Execution -2.1 (CVE-2019-11581) 1135884 WEB Atlassian JIRA Template Injection Code Execution -2.2 (CVE-2019-11581) 1135886 WEB WP Database Backup RCE 1135887 WEB Directory Traversal -30 1135890 EXPLOIT HPE Intelligent Management Center dbman Opcode 10003 Filename Denial of Service (CVE-2019-5355) 1135891 WEB GitStack Unsanitized Argument RCE -2.2 (CVE-2018-5955) 1135893 WEB Apache Tika tika-server Command Injection Vulnerability -2 (CVE-2018-1335) Modified 3 rule(s): --------------- 1130588 POP3 Brute Force Login -1 1133463 SSDP Simple Service Discovery Protocol Reflection Denial of Service Vulnerability 1135098 ICS Advantech WebAccess SCADA BwPSLinkZip Stack-based Buffer Overflow -1.1 (CVE-2018-7499) Deleted 3 rule(s): --------------- 1134922 ICS OMRON CX-One CX-Motion sscanf Stack-based Buffer Overflow (CVE-2018-7514) (old rule) 1134990 ICS OMRON CX-One SBA File Parsing wcscpy Stack-based Buffer Overflow (CVE-2018-7514) (old rule) 1135277 FILE OMRON CX-One CX-Position cdmapi32 Stack-based Buffer Overflow -1 (CVE-2018-18993) (old rule)