Rule Update

18-067 (December 18, 2018)


  DESCRIPTION

* indicates a new version of an existing rule

Deep Packet Inspection Rules:

Java RMI
1009390* - Apache Commons FileUpload DiskFileItem File Manipulation Remote Code Execution Vulnerability (CVE-2016-1000031)


Web Application Common
1009202 - ImageMagick Multiple 'ReadDIBImage' And 'WriteDIBImage' Out Of Bounds Write Vulnerabilities - 1


Web Client Common
1008883* - Adobe Acrobat And Reader Multiple Security Vulnerabilities (APSB18-02) - 2
1009327* - Adobe Acrobat And Reader Multiple Security Vulnerabilities (APSB18-30) - 9
1009437 - Adobe Acrobat And Reader Multiple Security Vulnerabilities (APSB18-41) - 1
1009438 - Adobe Acrobat And Reader Multiple Security Vulnerabilities (APSB18-41) - 2
1009439 - Adobe Acrobat And Reader Multiple Security Vulnerabilities (APSB18-41) - 3
1009440 - Adobe Acrobat And Reader Multiple Security Vulnerabilities (APSB18-41) - 4
1009441 - Adobe Acrobat And Reader Multiple Security Vulnerabilities (APSB18-41) - 5
1009444 - Adobe Acrobat And Reader Multiple Security Vulnerabilities (APSB18-41) - 6
1009442 - Adobe Acrobat And Reader Multiple Security Vulnerabilities (APSB18-41) - 7
1009443 - Adobe Acrobat And Reader Multiple Security Vulnerabilities (APSB18-41) - 8
1009394* - Adobe Acrobat And Reader NTLM SSO Hash Information Disclosure Vulnerability (CVE-2018-15979)
1009201 - ImageMagick Multiple 'ReadDIBImage' And 'WriteDIBImage' Out Of Bounds Write Vulnerabilities
1009292 - Microsoft Excel Information Disclosure Vulnerability (CVE-2018-8382)
1009307* - Microsoft JET Database Engine Remote Code Execution Vulnerability (CVE-2018-8423)
1009366* - Microsoft Outlook Multiple Security Vulnerabilities (Nov-2018)
1009446 - Microsoft Windows GDI Information Disclosure Vulnerability (CVE-2018-8596)
1009293* - Microsoft Windows Remote Code Execution Vulnerability (CVE-2018-8475)
1002744* - RealNetworks RealPlayer SWF Flash File Buffer Overflow Vulnerability (CVE-2006-0323)


Integrity Monitoring Rules:

There are no new or updated Integrity Monitoring Rules in this Security Update.


Log Inspection Rules:

There are no new or updated Log Inspection Rules in this Security Update.