Rule Update

19-002 (2019年1月15日)


* indicates a new version of an existing rule

Deep Packet Inspection Rules:

Database MySQL
1009357 - MySQL 5.5.8 NULL Pointer Dereference Denial Of Service Vulnerability (CVE-2011-5049)

1009209* - ElasticSearch Dynamic Script Arbitrary Java Code Execution Vulnerability (CVE-2014-3120)

Web Client Common
1004315* - Identified Malicious PDF Document - 3
1009359 - Microsoft Windows GDI Information Disclosure Vulnerability (CVE-2018-8424)
1009369* - Microsoft Windows VBScript Engine Remote Code Execution Vulnerability (CVE-2018-8544)
1009218* - Microsoft Windows VBScript Engine Use-After-Free Vulnerability (CVE-2018-8373)

Web Client Internet Explorer/Edge
1009246* - Microsoft Internet Explorer And Edge Scripting Engine Memory Corruption Vulnerability (CVE-2018-8372)
1009243* - Microsoft Internet Explorer Scripting Engine Memory Corruption Vulnerability (CVE-2018-8353)

Integrity Monitoring Rules:

There are no new or updated Integrity Monitoring Rules in this Security Update.

Log Inspection Rules:

1002797* - Database Server - MySQL