Rule Update

16-030 (October 11, 2016)


  DESCRIPTION

* indicates a new version of an existing rule

Deep Packet Inspection Rules:

Microsoft Office
1007373* - Microsoft Office Memory Corruption Vulnerability (CVE-2016-0010)
1007979 - Microsoft Office Memory Corruption Vulnerability (CVE-2016-7193)


Novell File Reporter (NFR) Agent
1005260* - Novell File Reporter SRS XML Server Request With Path Element Detected


OpenSSL
1007970* - OpenSSL OCSP Status Request Denial Of Service Vulnerability (CVE-2016-6304)


Suspicious Client Ransomware Activity
1007971* - Ransomware Fantom


Web Application Common
1000552* - Generic Cross Site Scripting(XSS) Prevention


Web Application PHP Based
1007641* - Magento Unauthenticated Arbitrary File Write Vulnerability (CVE-2016-4010)
1007739 - PHP TAR File Parsing Uninitialized Reference Vulnerability (CVE-2016-4343)


Web Client Common
1007995 - Microsoft Windows Diagnostics Hub Elevation Of Privilege (CVE-2016-7188)
1007974 - Microsoft Windows GDI+ Information Disclosure Vulnerability (CVE-2016-3209)
1007977 - Microsoft Windows GDI+ Information Disclosure Vulnerability (CVE-2016-3262)
1007978 - Microsoft Windows GDI+ Information Disclosure Vulnerability (CVE-2016-3263)
1007976 - Microsoft Windows Multiple Elevation Of Privilege Vulnerabilities (MS16-120)
1007989 - Microsoft Windows Multiple Security Vulnerabilities (MS16-118, MS16-119)
1007975 - Microsoft Windows Multiple Security Vulnerabilities (MS16-123)
1007988 - Microsoft Windows Multiple Security Vulnerabilities (MS16-124)


Web Client Internet Explorer/Edge
1007983 - Microsoft Edge Scripting Engine Information Disclosure Vulnerability (CVE-2016-7189)
1007984 - Microsoft Edge Scripting Engine Memory Corruption Vulnerability (CVE-2016-3386)
1007982 - Microsoft Edge Scripting Engine Memory Corruption Vulnerability (CVE-2016-7190)
1007994 - Microsoft Edge Scripting Engine Memory Corruption Vulnerability (CVE-2016-7194)
1007991 - Microsoft Internet Explorer And Edge Information Disclosure Vulnerability (CVE-2016-3267)
1007924* - Microsoft Internet Explorer And Edge Information Disclosure Vulnerability (CVE-2016-3351)
1007920* - Microsoft Internet Explorer And Edge Memory Corruption Vulnerability (CVE-2016-3247)
1007922* - Microsoft Internet Explorer And Edge Memory Corruption Vulnerability (CVE-2016-3297)
1007986 - Microsoft Internet Explorer And Edge Memory Corruption Vulnerability (CVE-2016-3331)
1007987 - Microsoft Internet Explorer And Edge Memory Corruption Vulnerability (CVE-2016-3382)
1007985 - Microsoft Internet Explorer Information Disclosure Vulnerability (CVE-2016-3298)
1007873* - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2016-3288)
1007981 - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2016-3383)
1007980 - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2016-3385)


Web Server Miscellaneous
1003741* - Adobe RoboHelp Server Authentication Bypass Vulnerability


Web Service HP SiteScope
1007742 - HP SiteScope DNS Tool Command Injection Vulnerability


Integrity Monitoring Rules:

There are no new or updated Integrity Monitoring Rules in this Security Update.


Log Inspection Rules:

There are no new or updated Log Inspection Rules in this Security Update.