*** EX RELS 03479 Release *** Total number of signatures: 6035 Description ================================================================== In this signature, we addressed the exploits/vulnerabilities and applications as below: Added 15 rule(s): --------------- 1136721 WEB CentOS Web Panel 0.9.8.763 Cross-Site Scripting (CVE-2019-7646) 1136760 EXPLOIT Memcached try_read_command_binary Stack Buffer Overflow (CVE-2020-10931) 1136840 WEB SQL Injection Attempt -97.1 1136841 WEB SQL Injection Attempt -97.2 1136842 WEB Trend Micro Apex One and OfficeScan Directory Traversal -1 (CVE-2020-8599) 1136843 WEB Cisco Data Center Network Manager persistUserInfo SQL Injection -1.1 (CVE-2019-15984) 1136844 WEB SQL Injection Attempt -98 1136845 WEB SQL Injection Attempt -99 1136846 WEB SQL Injection Attempt -100 1136847 WEB SQL Injection Attempt -101 1136853 WEB Apache ShardingSphere SnakeYAML Insecure Deserialization (CVE-2020-1947) 1136858 WEB Cisco Data Center Network Manager persistUserInfo SQL Injection -1.2 (CVE-2019-15984) 1136859 EXPLOIT Pivotal Spring Framework spring-messaging Module STOMP Remote Code Execution -4 (CVE-2018-1270) 1136860 EXPLOIT Eclipse Mosquitto message broker Denial of Service (CVE-2018-12543) 1162435 MAIL IMAP4 login state 1 via TCP -2.3 Modified 13 rule(s): --------------- 1064522 MAIL IMAP4 login state 1 via TCP -2.1 1066234 MAIL IMAP4 login state 1 via TCP -2.2 1066236 MAIL IMAP4 login via TCP -2.2 1134343 WEB SQL Injection Attempt -86 1136712 WEB Microsoft Exchange Server Validation Key Remote Code Execution -1.a (CVE-2020-0688) 1136723 SMB Microsoft Windows SMB Server SMBv3 Buffer Overflow -1 (CVE-2020-0796) 1136761 SMB Microsoft Windows SMB Server SMBv3 Buffer Overflow -2 (CVE-2020-0796) 1162263 TUNNEL OpenVPN access state 0 via TCP -5 1162264 TUNNEL OpenVPN access state 1 via TCP -5 1162265 TUNNEL OpenVPN access via TCP -5 1162276 TUNNEL OpenVPN access state 0 via UDP -5 1162277 TUNNEL OpenVPN access state 1 via UDP -5 1162278 TUNNEL OpenVPN access via UDP -5 Deleted 0 rule(s): ---------------