Rule Update
17-029 (June 20, 2017)
DESCRIPTION
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
DNS Server
1008332* - Microsoft DNS Server Denial Of Service Vulnerability (CVE-2017-0171)
Database MySQL
1008330* - MySQL Denial Of Service Vulnerability (CVE-2017-3599)
HP Intelligent Management Center (IMC)
1008329* - HP Intelligent Management Center RedirectServlet 'parafile' Directory Traversal Vulnerability
1008379 - HP Intelligent Management Center Service Information Disclosure Vulnerability (CVE-2017-5797)
1008296* - HP Intelligent Management Center UrlAccessController Filter Authentication Bypass Vulnerability
Mail Server Lotus Domino
1008310* - IBM Lotus Domino Server Stack Buffer Overflow Vulnerability (CVE-2017-1274)
OpenSSL
1008270* - OpenSSL ChaCha20/Poly1305 Cipher Suite Heap Buffer Overflow Vulnerability (CVE-2016-7054)
Unix RPC Services
1008371* - rpcbind Remote Denial Of Service Vulnerability (CVE-2017-8779)
Web Application PHP Based
1008391* - PHPMailer Remote Code Execution Vulnerability
1008411* - WordPress Tracking Code Manager Plugin Denial Of Service Vulnerability
Web Client Common
1008456 - Adobe Flash Player Multiple Security Vulnerabilities (APSB17-17)
1008462 - Google Chrome V8 Private Property Arbitrary Code Execution Vulnerability (CVE-2016-9651)
1008460 - Microsoft Windows Graphics Information Disclosure Vulnerability (CVE-2017-8532)
1008461 - Microsoft Windows Uniscribe Information Disclosure Vulnerability (CVE-2017-0285)
1008458 - VideoLAN VLC Heap Based Buffer Overflow Vulnerability (CVE-2017-8311)
Web Server Oracle
1008378 - Oracle WebLogic Server Untrusted Data Deserialization Vulnerability (CVE-2017-3248)
Web Server Squid
1005303* - Squid 'cachemgr.cgi' Remote Denial Of Service Vulnerability
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Deep Packet Inspection Rules:
DNS Server
1008332* - Microsoft DNS Server Denial Of Service Vulnerability (CVE-2017-0171)
Database MySQL
1008330* - MySQL Denial Of Service Vulnerability (CVE-2017-3599)
HP Intelligent Management Center (IMC)
1008329* - HP Intelligent Management Center RedirectServlet 'parafile' Directory Traversal Vulnerability
1008379 - HP Intelligent Management Center Service Information Disclosure Vulnerability (CVE-2017-5797)
1008296* - HP Intelligent Management Center UrlAccessController Filter Authentication Bypass Vulnerability
Mail Server Lotus Domino
1008310* - IBM Lotus Domino Server Stack Buffer Overflow Vulnerability (CVE-2017-1274)
OpenSSL
1008270* - OpenSSL ChaCha20/Poly1305 Cipher Suite Heap Buffer Overflow Vulnerability (CVE-2016-7054)
Unix RPC Services
1008371* - rpcbind Remote Denial Of Service Vulnerability (CVE-2017-8779)
Web Application PHP Based
1008391* - PHPMailer Remote Code Execution Vulnerability
1008411* - WordPress Tracking Code Manager Plugin Denial Of Service Vulnerability
Web Client Common
1008456 - Adobe Flash Player Multiple Security Vulnerabilities (APSB17-17)
1008462 - Google Chrome V8 Private Property Arbitrary Code Execution Vulnerability (CVE-2016-9651)
1008460 - Microsoft Windows Graphics Information Disclosure Vulnerability (CVE-2017-8532)
1008461 - Microsoft Windows Uniscribe Information Disclosure Vulnerability (CVE-2017-0285)
1008458 - VideoLAN VLC Heap Based Buffer Overflow Vulnerability (CVE-2017-8311)
Web Server Oracle
1008378 - Oracle WebLogic Server Untrusted Data Deserialization Vulnerability (CVE-2017-3248)
Web Server Squid
1005303* - Squid 'cachemgr.cgi' Remote Denial Of Service Vulnerability
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.