*** NK8 RELS 3508 Release *** Total number of signatures: 3001 Description ================================================================== In this signature, we addressed the exploits/vulnerabilities and applications as below: Added 7 rule(s): --------------- 1138059 NETBIOS Samba smbd read_nttrans_ea_list Infinite Allocation Loop Denial of Service -2 (CVE-2013-4124) 1138061 WEB Artica Proxy fw.progress.details.php Directory Traversal (CVE-2020-13158) 1138063 WEB Jenkins CVS Plugin Cross-Site Request Forgery (CVE-2020-2184) 1138064 WEB Nagios XI users.php do_update_user Stored Cross-Site Scripting 1138065 FILE FreeType TrueType Load_SBit_Png Integer Truncation Heap Buffer Overflow (CVE-2020-15999) 1138066 WEB GONICUS GOsa WebUI Change Password Form Reflected Cross-Site Scripting (CVE-2018-1000528) 1138067 WEB Suspicious PHP File Upload Modified 46 rule(s): --------------- 1131115 WEB-CLIENT Javascript Obfuscation in Exploit Kits - 3 (Possible Exploit Kit) 1131116 WEB-CLIENT Javascript Obfuscation in Exploit Kits - 4 (Possible Exploit Kit) 1131135 WEB-CLIENT Javascript Obfuscation in Exploit Kits - 5 (Possible Exploit Kit) 1131144 WEB-CLIENT Javascript Obfuscation in Exploit Kits - 8 (Possible Exploit Kit) 1131145 WEB-CLIENT Javascript Obfuscation in Exploit Kits - 9 (Possible Exploit Kit) 1131146 WEB-CLIENT Javascript Obfuscation in Exploit Kits - 10 (Possible Exploit Kit) 1131148 WEB-CLIENT Javascript Obfuscation in Exploit Kits - 12 (Possible Exploit Kit) 1131164 WEB-CLIENT Javascript Obfuscation in Exploit Kits - 24 (Possible Exploit Kit) 1131275 FILE Microsoft Windows OLE Automation Array Remote Code Execution Vulnerability -4 (CVE-2014-6332) (Possible Exploit Kit) 1131369 EXPLOIT Angler Exploit Kit Encrypted Binary Activity -4 (Possible Exploit Kit) 1132302 WEB-CLIENT Javascript Obfuscation in Exploit Kits - 36 (Possible Exploit Kit) 1132310 WEB-CLIENT Javascript Obfuscation in Exploit Kits - 37 (Possible Exploit Kit) 1132322 WEB-CLIENT Javascript Obfuscation in Exploit Kits - 39 (Possible Exploit Kit) 1132338 WEB-CLIENT Javascript Obfuscation in Exploit Kits - 41 (Possible Exploit Kit) 1132382 WEB-CLIENT Suspicious Adobe Flash File Loading -2 (Possible Exploit Kit) 1132609 WEB-CLIENT Javascript Obfuscation in Exploit Kits - 61 (Possible Exploit Kit) 1132610 WEB-CLIENT Javascript Obfuscation in Exploit Kits - 62 (Possible Exploit Kit) 1132621 WEB-CLIENT Javascript Obfuscation in Exploit Kits - 63 (Possible Exploit Kit) 1132626 WEB-CLIENT Javascript Obfuscation in Exploit Kits - 64 (Possible Exploit Kit) 1132628 WEB-CLIENT Javascript Obfuscation in Exploit Kits - 66 (Possible Exploit Kit) 1132629 WEB-CLIENT Javascript Obfuscation in Exploit Kits - 67 (Possible Exploit Kit) 1132671 WEB-CLIENT Javascript Obfuscation in Exploit Kits - 68 (Possible Exploit Kit) 1132672 WEB-CLIENT Javascript Obfuscation in Exploit Kits - 69 (Possible Exploit Kit) 1132821 WEB-CLIENT Suspicious HTML Iframe Tag -13 (Possible Exploit Kit) 1132823 WEB-CLIENT Suspicious Adobe Flash File Loading -5 (Possible Exploit Kit) 1132824 WEB-CLIENT WScript.Shell Remote Code Execution -4 (Possible Exploit Kit) 1132825 WEB-CLIENT Javascript Obfuscation in Exploit Kits - 72 (Possible Exploit Kit) 1132827 WEB-CLIENT Javascript Obfuscation in Exploit Kits - 74 (Possible Exploit Kit) 1132857 WEB-CLIENT Javascript Obfuscation in Exploit Kits - 78 (Possible Exploit Kit) 1132894 WEB-CLIENT Suspicious HTML Iframe Tag -14 (Possible Exploit Kit) 1132901 WEB-CLIENT Javascript Obfuscation in Exploit Kits - 78 (Possible Exploit Kit) 1132903 WEB-CLIENT Suspicious HTML Iframe Tag -16 (Possible Exploit Kit) 1133272 WEB-CLIENT Javascript Obfuscation in Exploit Kits - 84 (Possible Exploit Kit) 1133274 WEB-CLIENT Suspicious HTML Iframe Tag -19 (Possible Exploit Kit) 1133422 WEB-CLIENT Javascript Obfuscation in Exploit Kits - 85 (Possible Exploit Kit) 1133423 WEB-CLIENT Javascript Obfuscation in Exploit Kits - 86 (Possible Exploit Kit) 1133424 WEB-CLIENT Suspicious HTML Iframe Tag -20 (Possible Exploit Kit) 1133586 WEB-CLIENT Javascript Obfuscation in Exploit Kits - 87 (Possible Exploit Kit) 1133587 WEB-CLIENT Javascript Obfuscation in Exploit Kits - 88 (Possible Exploit Kit) 1133609 WEB-CLIENT Javascript Obfuscation in Exploit Kits - 89 (Possible Exploit Kit) 1133645 WEB-CLIENT Javascript Obfuscation in Exploit Kits - 90 (Possible Exploit Kit) 1133649 WEB-CLIENT Javascript Obfuscation in Exploit Kits - 91 (Possible Exploit Kit) 1133666 WEB-CLIENT Javascript Obfuscation in Exploit Kits - 92 (Possible Exploit Kit) 1133725 WEB-CLIENT Javascript Obfuscation in Exploit Kits - 94 (Possible Exploit Kit) 1135899 FILE Ubuntu VCFtools vulnerabilities (CVE-2018-11130) 1136520 WEB Jenkins ACL Bypass and Metaprogramming RCE -2 (CVE-2018-1000861) Deleted 0 rule(s): ---------------