Rule Update

22-040 (August 16, 2022)


* indicates a new version of an existing rule

Deep Packet Inspection Rules:

Microsoft Office
1011504 - Microsoft Excel Memory Corruption Vulnerability (CVE-2005-4131)

Web Application Common
1011490* - Zoho ManageEngine ADAudit Plus XML External Entity Injection Vulnerability (CVE-2022-28219)

Web Application PHP Based
1007459* - Drupal XRDS Document Denial Of Service Vulnerability (CVE-2014-5267)
1011170* - WordPress 'Contact Form' Plugin Cross-Site Scripting Vulnerability (CVE-2021-24276)

Web Client Common
1011500 - Identified Download of Python Reverse Shell Payload Over HTTP

Web Server Common
1011510 - Pandora FMS Authenticated Remote Code Execution Vulnerability (CVE-2020-5844)

Web Service HP SiteScope
1005233* - HP SiteScope API Preferences Security Bypass Vulnerability (CVE-2012-3261)

Zimbra Admin Console Ports
1011513 - Zimbra Collaboration Multiple Directory Traversal Vulnerabilities (CVE-2022-27925 & CVE-2022-37042)

Integrity Monitoring Rules:

There are no new or updated Integrity Monitoring Rules in this Security Update.

Log Inspection Rules:

1011512 - Microsoft DFS Server Activity