Rule Update

16-029 (October 4, 2016)


* indicates a new version of an existing rule

Deep Packet Inspection Rules:

Application Control For File Sharing
1003682* - Application Control For Ares Galaxy

DNS Server
1007972 - ISC BIND Assertion Failure Denial Of Service Vulnerability (CVE-2016-2776)

Microsoft Office
1007939* - Microsoft Office Memory Corruption Vulnerability (CVE-2016-3357)

Suspicious Client Ransomware Activity
1007971 - Ransomware Fantom

Web Application PHP Based
1006794* - PHP 'main/rfc1867.c' Remote Denial Of Service Vulnerability

Web Client Common
1007784* - Adobe Acrobat And Reader Memory Corruption Vulnerability (CVE-2016-4251)
1007759* - Adobe Flash Player Use After Free Vulnerability (CVE-2016-4228)
1007871 - GNU Wget Arbitrary Commands Execution Vulnerability (CVE-2016-4971)
1007935* - Microsoft Windows Kernel Elevation Of Privilege Vulnerability (CVE-2016-3371)
1007659* - Microsoft Windows PDF Information Disclosure Vulnerability (CVE-2016-3215)

Web Server Miscellaneous
1007528 - GlassFish Java EE Application Server Arbitrary File Read Vulnerability

Windows Services RPC Client
1007897* - Microsoft Internet Explorer Information Disclosure Vulnerability Over SMB (CVE-2016-3321)

Integrity Monitoring Rules:

There are no new or updated Integrity Monitoring Rules in this Security Update.

Log Inspection Rules:

There are no new or updated Log Inspection Rules in this Security Update.