Rule Update

19-012 (March 12, 2019)


  DESCRIPTION

* indicates a new version of an existing rule

Deep Packet Inspection Rules:

DCERPC Services
1009579 - Microsoft Windows SMB Information Disclosure Vulnerability (CVE-2019-0703)


Web Application Common
1009540 - Red Hat Ceph Storage Debug Shell Remote Command Injection (CVE-2018-14649)


Web Application PHP Based
1009545 - PHP 'phar_tar_writeheaders()' Function Stack Buffer Overflow Vulnerability (CVE-2016-2554)


Web Client Common
1009266 - Adobe Acrobat And Reader Multiple Security Vulnerabilities (APSB18-21) - 11
1009212* - Adobe Acrobat And Reader Multiple Security Vulnerabilities (APSB18-21) - 5
1009322 - Microsoft JET Database Engine Remote Code Execution Vulnerability (CVE-2018-8392)
1009428* - Microsoft Outlook Remote Code Execution Vulnerability (CVE-2018-8587)
1009475 - Microsoft Windows Data Sharing Service Elevation Of Privilege Vulnerability (CVE-2019-0571)
1009294 - Microsoft Windows GDI Information Disclosure Vulnerability (CVE-2018-8396)
1009486 - Microsoft Windows GDI Information Disclosure Vulnerability (CVE-2018-8595)
1009571 - Microsoft Windows Multiple Information Disclosure Vulnerabilities (March 2019)
1009576 - Microsoft Windows VBScript Engine Remote Code Execution Vulnerability (CVE-2019-0666)
1009583 - Microsoft Windows Win32k Elevation Of Privilege Vulnerability (CVE-2019-0797)
1009582 - Microsoft Windows Win32k Elevation Of Privilege Vulnerability (CVE-2019-0808)
1009554 - RARLAB WinRAR ACE Remote Code Execution Vulnerability (CVE-2018-20250)


Web Client Internet Explorer/Edge
1009415* - Microsoft Edge Chakra Scripting Engine Memory Corruption Vulnerability (CVE-2018-8629)
1009577 - Microsoft Edge Chakra Scripting Engine Memory Corruption Vulnerability (CVE-2019-0592)
1009574 - Microsoft Edge Scripting Engine Memory Corruption Vulnerability (CVE-2019-0639)
1009564 - Microsoft Edge Scripting Engine Memory Corruption Vulnerability (CVE-2019-0769)
1009565 - Microsoft Edge Scripting Engine Memory Corruption Vulnerability (CVE-2019-0770)
1009566 - Microsoft Edge Scripting Engine Memory Corruption Vulnerability (CVE-2019-0771)
1009567 - Microsoft Edge Scripting Engine Memory Corruption Vulnerability (CVE-2019-0773)
1009573 - Microsoft Edge Security Feature Bypass Vulnerability (CVE-2019-0612)
1009575 - Microsoft Internet Explorer And Edge Scripting Engine Memory Corruption Vulnerability (CVE-2019-0609)
1009414* - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2018-8631)
1009568 - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2019-0763)
1009569 - Microsoft Internet Explorer Scripting Engine Memory Corruption Vulnerability (CVE-2019-0680)
1009570 - Microsoft Internet Explorer Security Feature Bypass Vulnerability (CVE-2019-0768)
1009371* - Microsoft Internet Explorer VBScript Engine Remote Code Execution Vulnerability (CVE-2018-8552)
1009563 - Microsoft Internet Explorer VBScript Engine Remote Code Execution Vulnerability (CVE-2019-0665)
1009578 - Microsoft Internet Explorer VBScript Engine Remote Code Execution Vulnerability (CVE-2019-0667)


Web Server SharePoint
1009535 - Microsoft SharePoint Remote Code Execution Vulnerability (CVE-2019-0604)


Integrity Monitoring Rules:

1009434 - Kubernetes Cluster Node


Log Inspection Rules:

There are no new or updated Log Inspection Rules in this Security Update.