Rule Update

18-063 (November 27, 2018)


  DESCRIPTION

* indicates a new version of an existing rule

Deep Packet Inspection Rules:

Asterisk RTP Protocol
1008964* - Digium Asterisk Compound RTCP Out-Of-Bounds Write Vulnerability (CVE-2017-17664)


Asterisk Server IAX2
1002607* - Asterisk IAX2 Packet Amplification Remote Denial Of Service Vulnerability (CVE-2008-1897)


Oracle Secure Backup
1003225* - Oracle Secure Backup NDMP CONECT_CLIENT_AUTH Command Buffer Overflow


Web Application PHP Based
1008817 - PHP WDDX NULL Pointer Dereference Vulnerability (CVE-2016-9934)


Web Client Common
1009273 - Adobe Acrobat And Reader Multiple Security Vulnerabilities (APSB18-09) - 8
1009349* - Microsoft Windows ALPC Elevation Of Privilege Vulnerability (CVE-2018-8584)
1009378* - Microsoft Windows DirectX Information Disclosure Vulnerability (CVE-2018-8563)
1009088* - Microsoft Windows Multiple Elevation Of Privilege Vulnerabilities (May 2018)
1009382* - Microsoft Windows Multiple Security Vulnerabilities (Nov-2018)
1009293* - Microsoft Windows Remote Code Execution Vulnerability (CVE-2018-8475)
1009171* - Microsoft Windows Shell Remote Code Execution Vulnerability
1009238* - Microsoft Windows Shell Remote Code Execution Vulnerability - 1
1009029* - PHP 'http_fopen_wrapper' Stack Buffer Overflow Vulnerability (CVE-2018-7584)


Integrity Monitoring Rules:

There are no new or updated Integrity Monitoring Rules in this Security Update.


Log Inspection Rules:

There are no new or updated Log Inspection Rules in this Security Update.