Deep Security Center

RULE UPDATE: 15-018 (June 23, 2015)
* indicates a new version of an existing rule

Deep Packet Inspection Rules:

Application Control For File Sharing
1004707* - Application Control For Dropbox


Application Control For Web Media
1002451* - Application Control For YouTube


Elasticsearch
1006793 - Elasticsearch Groovy Search Sandbox Bypass Vulnerability


FTP Server ProFTPD
1006743 - ProFTPD Remote Command Execution Vulnerability (CVE-2015-3306)


LDAP Client
1006785 - Identified LDAP BindRequest Using NTLM Authentication Mechanism


Microsoft Office
1006370* - Microsoft Word Use After Free Remote Code Execution Vulnerability (CVE-2014-6357)


OpenSSL
1006655 - OpenSSL ASN_TYPE_cmp Segmentation Fault Vulnerability (CVE-2015-0286)


OpenSSL Client
1006546* - OpenSSL ECDHE Downgrade Vulnerability (CVE-2014-3572)


Suspicious Server Application Activity
1006560 - Identified Microsoft SQL Server Resolution Service Distributed Denial Of Service Attack


Universal Plug And Play Service
1006746 - Detected Too Many SSDP Traffic Amplification Requests


Web Application Common
1000552* - Generic Cross Site Scripting(XSS) Prevention
1000608* - Generic SQL Injection Prevention


Web Application PHP Based
1006794 - PHP 'main/rfc1867.c' Remote Denial Of Service Vulnerability


Web Application Tomcat
1001074* - Apache Tomcat Cookie Handling Session ID Disclosure


Web Client Common
1006299* - Adobe Flash Player Memory Corruption Vulnerability (CVE-2014-0558)
1006530* - Adobe Flash Player Memory Corruption Vulnerability (CVE-2014-0582)
1006353* - Adobe Flash Player Memory Corruption Vulnerability (CVE-2014-0584)
1006398* - Adobe Flash Player Memory Corruption Vulnerability (CVE-2014-0585)
1006449* - Adobe Flash Player Memory Corruption Vulnerability (CVE-2014-0590)
1006365* - Adobe Flash Player Memory Corruption Vulnerability (CVE-2014-8440)
1006646* - Adobe Flash Player Memory Corruption Vulnerability (CVE-2015-0359)
1006657* - Adobe Flash Player Remote Integer Overflow Vulnerability (CVE-2014-0569) - 2
1006468* - Adobe Flash Player Unspecified Vulnerability (CVE-2015-0313)
1006512* - Adobe Flash Player Use After Free Remote Code Execution Vulnerability (CVE-2015-0315)
1006787 - Adobe Font Driver Denial Of Service Vulnerability (CVE-2015-0074)
1006550* - Adobe Font Driver Remote Code Execution Vulnerability (CVE-2015-0090)
1006421* - Adobe Reader And Acrobat Memory Corruption Vulnerability (CVE-2014-8457)
1006418* - Adobe Reader And Acrobat Memory Corruption Vulnerability (CVE-2014-8458)
1006420* - Adobe Reader And Acrobat Memory Corruption Vulnerability (CVE-2014-9159)
1006598* - Microsoft Windows DLL Planting Remote Code Execution Vulnerability Over HTTP (CVE-2015-0096)
1006549* - OpenType Font Parsing Vulnerabilities


Web Client Internet Explorer
1006807 - Microsoft Internet Explorer ASLR Bypass Using MemoryProtection Vulnerability
1006790 - Microsoft Internet Explorer Memory Access Violation Vulnerability
1006758* - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2015-1744)
1006759* - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2015-1745)
1006760* - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2015-1747)
1006789 - Microsoft Internet Explorer MemoryProtector ASLR Bypass Vulnerability
1006783 - Microsoft Internet Explorer Null Pointer Denial Of Service Vulnerability
1006809 - Microsoft Internet Explorer Type Confusion Using Isolated Heap Vulnerability
1006665* - Microsoft Internet Explorer VBScript ASLR Bypass (CVE-2015-1686)


Web Client Mozilla Firefox
1003324* - Mozilla Firefox URI Invisible Control Characters Incorrect Decoding


Web Client SSL
1005040* - Identified Revoked Certificate Authority In SSL Traffic


Web Server Common
1005839* - Identified XML External Entity Injection In HTTP Request
1006386 - PHP 'unserialize()' Integer Overflow Vulnerability (CVE-2014-3669)


Web Server Miscellaneous
1006744 - Jetty Httpd HttpParser Memory Information Disclosure Vulnerability (CVE-2015-2080)


Windows Services RPC Client
1006784 - Identified Windows Group Policy Files Downloaded From Untrusted Sources
1003980* - SMB Client Race Condition Vulnerability


Integrity Monitoring Rules:

There are no new or updated Integrity Monitoring Rules in this Security Update.


Log Inspection Rules:

There are no new or updated Log Inspection Rules in this Security Update.
RULE UPDATE: 15-017 (June 9, 2015)
* indicates a new version of an existing rule

Deep Packet Inspection Rules:

Application Control For Remote Login
1002508* - Application Control For RDP


HP Intelligent Management Center (IMC)
1005476* - HP Intelligent Management Center Multiple Information Disclosure Vulnerabilities


Microsoft Office
1006771 - Microsoft Office Uninitialized Memory Use Vulnerability (CVE-2015-1770)
1006769 - Microsoft Office Use After Free Vulnerability (CVE-2015-1759)
1006770 - Microsoft Office Use After Free Vulnerability (CVE-2015-1760)


OpenSSL Client
1006318* - Multiple Browser Wildcard Certificate Spoofing Vulnerability
1006546* - OpenSSL ECDHE Downgrade Vulnerability (CVE-2014-3572)


Suspicious Server Application Activity
1001164* - Detected Terminal Services (RDP) Server Traffic


VoIP Soft Phones
1006537* - Asterisk Open Source SIP SUBSCRIBE Request Denial Of Service Vulnerability


Web Application Common
1000552* - Generic Cross Site Scripting(XSS) Prevention
1005402* - Identified Suspicious User Agent In HTTP Request


Web Client Apple Safari
1004362* - Apple Safari For Windows Long Link DoS


Web Client Common
1006533* - Adobe Flash Player Buffer Overflow Vulnerability (CVE-2015-0311) - 1
1006772 - Adobe Flash Player Cross Domain Policy Bypass Vulnerability (CVE-2015-3096)
1006773 - Adobe Flash Player Cross Domain Policy Bypass Vulnerability (CVE-2015-3098)
1006774 - Adobe Flash Player Cross Domain Policy Bypass Vulnerability (CVE-2015-3099)
1006776 - Adobe Flash Player Cross Domain Policy Bypass Vulnerability (CVE-2015-3102)
1006286* - Adobe Flash Player Heap Buffer Overflow Vulnerability (CVE-2014-0556)
1006778 - Adobe Flash Player Integer Overflow Vulnerability (CVE-2015-3104)
1006365* - Adobe Flash Player Memory Corruption Vulnerability (CVE-2014-8440)
1006781 - Adobe Flash Player Memory Corruption Vulnerability (CVE-2015-3108)
1006779 - Adobe Flash Player Out Of Bound Write Vulnerability (CVE-2015-3105)
1006589* - Adobe Flash Player Remote Code Execution Vulnerability (CVE-2015-0336)
1006775 - Adobe Flash Player Remote Code Execution Vulnerability (CVE-2015-3100)
1006657 - Adobe Flash Player Remote Integer Overflow Vulnerability (CVE-2014-0569) - 2
1006701* - Adobe Flash Player Type Confusion Remote Code Execution Vulnerability (CVE-2015-3077)
1006707* - Adobe Flash Player Type Confusion Remote Code Execution Vulnerability (CVE-2015-3084)
1006468* - Adobe Flash Player Unspecified Vulnerability (CVE-2015-0313)
1006777 - Adobe Flash Player Use After Free Vulnerability (CVE-2015-3103)
1006780 - Adobe Flash Player Use After Free Vulnerability (CVE-2015-3106)
1004715* - HTTP Web Client Decoding
1006598* - Microsoft Windows DLL Planting Remote Code Execution Vulnerability Over HTTP (CVE-2015-0096)
1006619* - Microsoft Windows EMF Processing Remote Code Execution Vulnerability (CVE-2015-1645)
1006782 - Microsoft Windows HTML Application Denial Of Service Vulnerability


Web Client Internet Explorer
1003268* - CSS Memory Corruption Vulnerability (CVE-2009-0076)
1006761 - Microsoft Internet Explorer Elevation Of Privilege Vulnerability (CVE-2015-1748)
1006745 - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2015-1687)
1006747 - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2015-1730)
1006748 - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2015-1731)
1006749 - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2015-1732)
1006751 - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2015-1735)
1006752 - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2015-1736)
1006753 - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2015-1737)
1006755 - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2015-1740)
1006756 - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2015-1741)
1006757 - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2015-1742)
1006758 - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2015-1744)
1006759 - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2015-1745)
1006760 - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2015-1747)
1006762 - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2015-1750)
1006763 - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2015-1751)
1006764 - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2015-1752)
1006765 - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2015-1753)
1006766 - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2015-1755)
1006767 - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2015-1766)
1005110* - Novell iPrint Client 'nipplib.dll' GetDriverSettings Realm Remote Code Execution Vulnerability


Web Client SSL
1006606* - Identified Fraudulent Digital Certificate - 1


Web Server Miscellaneous
1004189* - RedHat JBoss Enterprise Application Platform JMX Console Authentication Bypass


Web Server SharePoint
1003815* - Microsoft SharePoint Team Services Download Feature Source Code Information Disclosure Vulnerability


Windows Services RPC Client
1003293* - Block Conficker.B++ Worm Outgoing Named Pipe Connection
1006554* - Microsoft Windows DLL Planting Remote Code Execution Vulnerability (CVE-2015-0096)


Integrity Monitoring Rules:

1005041* - Malware - Suspicious Microsoft Windows Files Detected
1005042* - Malware - Suspicious Microsoft Windows Registry Entries Detected
1006677 - Suspicious Files Detected In Operating System Directories
1006658 - Suspicious Files Detected In Temporary Directories
1006683* - Suspicious Running Processes Detected
1003002* - Web Browser - Internet Explorer


Log Inspection Rules:

There are no new or updated Log Inspection Rules in this Security Update.
RULE UPDATE: 15-016 (May 26, 2015)
* indicates a new version of an existing rule

Deep Packet Inspection Rules:

DHCP Server
1001840* - Restrict DHCP Option Length


Database Oracle
1001141* - Oracle Database Server Core RDBMS Component Denial Of Service


SSL Client
1006740 - Identified SSL/TLS Diffie-Hellman Key Exchange Using Weak Parameters Client


Suspicious Server Application Activity
1003594* - Detected SSL/TLS Server Traffic


Unix Samba
1003999* - Samba MS-RPC Remote Shell Command Execution Vulnerability


Web Application PHP Based
1006656* - Magento Admin Authentication Bypass Vulnerability


Web Application Tomcat
1001074* - Apache Tomcat Cookie Handling Session ID Disclosure


Web Client Common
1006732 - Adobe Acrobat And Reader Multiple JavaScript API Execution Remote Security Bypass Vulnerabilities
1006735 - Adobe Acrobat And Reader Multiple Remote Security Bypass Vulnerabilities
1006719 - Adobe Acrobat And Reader Null Pointer Deference Remote Denial Of Service Vulnerability (CVE-2015-3047)
1006731 - Adobe Acrobat And Reader Remote Security Bypass On JavaScript API Execution
1006736 - Adobe Acrobat And Reader Remote Security Bypass On JavaScript API Execution (CVE-2015-3074)
1006733 - Adobe Acrobat And Reader Remote Security Bypass On JavaScript API Execution Vulnerability (CVE-2015-3069)
1006711 - Adobe Flash Player Heap Overflow Vulnerability (CVE-2015-3088)
1006714 - Adobe Flash Player Information Disclosure Vulnerability (CVE-2015-3091)
1006715 - Adobe Flash Player Information Disclosure Vulnerability (CVE-2015-3092)
1006710 - Adobe Flash Player Integer Overflow Vulnerability (CVE-2015-3087)
1006365* - Adobe Flash Player Memory Corruption Vulnerability (CVE-2014-8440)
1006646* - Adobe Flash Player Memory Corruption Vulnerability (CVE-2015-0359)
1006702 - Adobe Flash Player Memory Corruption Vulnerability (CVE-2015-3078)
1006712 - Adobe Flash Player Memory Corruption Vulnerability (CVE-2015-3089)
1006713 - Adobe Flash Player Memory Corruption Vulnerability (CVE-2015-3090)
1006589* - Adobe Flash Player Remote Code Execution Vulnerability (CVE-2015-0336)
1006301* - Adobe Flash Player Remote Integer Overflow Vulnerability (CVE-2014-0569)
1006701 - Adobe Flash Player Type Confusion Remote Code Execution Vulnerability (CVE-2015-3077)
1006707 - Adobe Flash Player Type Confusion Remote Code Execution Vulnerability (CVE-2015-3084)
1006709 - Adobe Flash Player Type Confusion Remote Code Execution Vulnerability (CVE-2015-3086)
1006468* - Adobe Flash Player Unspecified Vulnerability (CVE-2015-0313)
1006704 - Adobe Flash Player Use After Free Vulnerability (CVE-2015-3080)
1006718 - Adobe Reader And Acrobat Memory Corruption Vulnerability (CVE-2015-3046)
1006721 - Adobe Reader And Acrobat Memory Corruption Vulnerability (CVE-2015-3050)
1006722 - Adobe Reader And Acrobat Memory Corruption Vulnerability (CVE-2015-3051)
1006723 - Adobe Reader And Acrobat Memory Corruption Vulnerability (CVE-2015-3052)
1006727 - Adobe Reader And Acrobat Memory Corruption Vulnerability (CVE-2015-3056)
1006728 - Adobe Reader And Acrobat Memory Corruption Vulnerability (CVE-2015-3057)
1006730 - Adobe Reader And Acrobat Memory Corruption Vulnerability (CVE-2015-3059)
1006734 - Adobe Reader And Acrobat Memory Corruption Vulnerability (CVE-2015-3070)
1006738 - Adobe Reader And Acrobat Memory Corruption Vulnerability (CVE-2015-3076)
1006724 - Adobe Reader And Acrobat Remote Code Execution Vulnerability (CVE-2015-3053)
1006725 - Adobe Reader And Acrobat Remote Code Execution Vulnerability (CVE-2015-3054)
1006726 - Adobe Reader And Acrobat Remote Code Execution Vulnerability (CVE-2015-3055)
1006737 - Adobe Reader And Acrobat Remote Code Execution Vulnerability (CVE-2015-3075)
1005170* - Java Applet Remote Code Execution Vulnerability
1005178* - Java Applet Remote Code Execution Vulnerability - 2
1006739 - Java Applet Remote Code Execution Vulnerability - 3
1001129* - Microsoft DirectX RLE Compressed Targa Image Processing Buffer Overflow
1006443* - Sun Java Runtime Environment Web Start JNLP File Stack Buffer Overflow Vulnerability


Web Client Internet Explorer
1004717* - Identified Suspicious AllowScriptAccess Parameter Of Shockwave Flash Player ActiveX Control
1006668* - Microsoft Internet Explorer Clipboard Information Disclosure Vulnerability (CVE-2015-1692)
1006618* - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2015-1668)
1006674* - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2015-1705)
1004339* - Microsoft Internet Explorer Uninitialized Memory Corruption Vulnerability


Web Server Apache
1006316 - Apache HTTP Server mod_proxy Reverse Proxy Mode Security Bypass Vulnerability (CVE-2011-4317)


Web Server Common
1005434* - Disallow Upload Of A File (Php/Class/Archive)


Web Server HTTPS
1006741 - Identified SSL/TLS Diffie-Hellman Key Exchange Using Weak Parameters Server


Integrity Monitoring Rules:

There are no new or updated Integrity Monitoring Rules in this Security Update.


Log Inspection Rules:

There are no new or updated Log Inspection Rules in this Security Update.
* indicates a new version of an existing rule

Deep Packet Inspection Rules:

Database MySQL
1006262* - MySQL yaSSL Pre-authentication Code Execution Vulnerability


HP OpenView
1006250* - HP Data Protector Unspecified Arbitrary Code Execution Vulnerability (CVE-2014-2623)


HP System Management Homepage
1006447 - HP System Management Homepage Cross Site Scripting Vulnerability (CVE-2014-2640)


Microsoft Office
1006625 - Microsoft Office Component Use After Free Vulnerability (CVE-2015-1649)
1006626 - Microsoft Office Component Use After Free Vulnerability (CVE-2015-1650)
1006627 - Microsoft Office Component Use After Free Vulnerability (CVE-2015-1651)
1006623 - Microsoft Office Memory Corruption Vulnerability (CVE-2015-1641)


OpenSSL
1006621 - OpenSSL Client Authentication Handler ClientKeyExchange Message Denial Of Service Vulnerability (CVE-2015-1787)


OpenSSL Client
1006318 - Multiple Browser Wildcard Certificate Spoofing Vulnerability


Web Application PHP Based
1004998* - PHP-CGI Query String Parameter Vulnerability


Web Client Common
1006631 - Identified File Protocol Handler In HTTP Location Header
1006619 - Microsoft Windows EMF Processing Remote Code Execution Vulnerability (CVE-2015-1645)


Web Client Internet Explorer
1006628 - MSXML Same Origin Policy Security Bypass Vulnerability (CVE-2015-1646)
1005591* - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2013-3163)
1006609 - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2015-1652)
1006610 - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2015-1657)
1006611 - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2015-1659)
1006612 - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2015-1660)
1006613 - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2015-1661)
1006614 - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2015-1662)
1006615 - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2015-1665)
1006616 - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2015-1666)
1006617 - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2015-1667)
1006618 - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2015-1668)


Web Server IIS
1006629 - Microsoft Windows ASP.NET Information Disclosure Vulnerability (CVE-2015-1648)
1006620 - Microsoft Windows HTTP.sys Remote Code Execution Vulnerability (CVE-2015-1635)


Windows Services RPC Server
1003015* - Microsoft SMB Credential Reflection Vulnerability
1006579* - Microsoft Windows NETLOGON Spoofing Vulnerability (CVE-2015-0005)
1000391* - Microsoft Windows Plug And Play Registry Key Access Buffer Overflow
1000817* - Microsoft Windows Workstation RPC Stack Overflow


Integrity Monitoring Rules:

1003375* - Application - Postfix
1005041* - Malware - Suspicious Microsoft Windows Files Detected


Log Inspection Rules:

There are no new or updated Log Inspection Rules in this Security Update.
* indicates a new version of an existing rule

Deep Packet Inspection Rules:

DHCP Server
1001840* - Restrict DHCP Option Length


Database MySQL
1006262 - MySQL yaSSL Pre-authentication Code Execution Vulnerability


Microsoft Office
1004266* - Identified Suspicious Microsoft Office Document
1006322* - Microsoft Office Bad Index Remote Code Execution Vulnerability (CVE-2014-6334)
1004848* - Microsoft Office Excel Data Initialization Vulnerability (CVE-2011-0105)
1005747* - Microsoft Silverlight Invalid Typecast Memory Disclosure Vulnerability
1006583 - Microsoft Silverlight Invalid Typecast Memory Disclosure Vulnerability (CVE-2013-0074)


NTP Server Linux
1006435* - Network Time Protocol configure() and ctl_putdata() Stack Based Buffer Overflow Vulnerability


OpenSSL
1006541* - Openssl DTLS 'dtls1_buffer_record' Memory Exhaustion Denial Of Service Vulnerability (CVE-2015-0206)


OpenSSL Client
1006546* - OpenSSL ECDHE Downgrade Vulnerability (CVE-2014-3572)


Solr Service
1006448 - Apache Solr SolrResourceLoader Directory Traversal Vulnerability


Web Application PHP Based
1006559* - PHPMoAdmin Unauthorized Remote Code Execution Vulnerability


Web Client Common
1006533* - Adobe Flash Player Buffer Overflow Vulnerability (CVE-2015-0311) - 1
1006286* - Adobe Flash Player Heap Buffer Overflow Vulnerability (CVE-2014-0556)
1006521* - Adobe Flash Player Heap Overflow Vulnerability (CVE-2015-0327)
1006595 - Adobe Flash Player Integer Overflow Vulnerability (CVE-2015-0338)
1006352* - Adobe Flash Player Memory Corruption Vulnerability (CVE-2014-0576)
1006451* - Adobe Flash Player Memory Corruption Vulnerability (CVE-2014-8438)
1006515* - Adobe Flash Player Memory Corruption Vulnerability (CVE-2015-0318)
1006594 - Adobe Flash Player Memory Corruption Vulnerability (CVE-2015-0337)
1006593 - Adobe Flash Player Memory Corruption Vulnerability (CVE-2015-0339)
1006596 - Adobe Flash Player Remote Code Execution Vulnerability (CVE-2015-0332)
1006588 - Adobe Flash Player Remote Code Execution Vulnerability (CVE-2015-0335)
1006589 - Adobe Flash Player Remote Code Execution Vulnerability (CVE-2015-0336)
1006584 - Adobe Flash Player Remote Memory Corruption Vulnerability (CVE-2013-0634) -1
1006592 - Adobe Flash Player Security Bypass Vulnerability (CVE-2015-0340)
1006597 - Adobe Flash Player Type Confusion Vulnerability (CVE-2015-0334)
1006591 - Adobe Flash Player Use After Free Vulnerability (CVE-2015-0341)
1006590 - Adobe Flash Player Use After Free Vulnerability (CVE-2015-0342)
1004866* - Adobe Flex SDK Cross Site Scripting Vulnerability (CVE-2011-2461)
1006551* - Adobe Font Driver Remote Code Execution Vulnerability (CVE-2015-0091)
1006553* - Adobe Font Driver Remote Code Execution Vulnerability (CVE-2015-0092)
1006587 - Adobe Reader And Acrobat U3D File Invalid Array Index Remote Vulnerability (CVE-2009-2990)
1004552* - Adobe TIFF File Vulnerability - 3
1006442* - Identified Suspicious Obfuscated JavaScript - 2
1006599 - Identified Suspicious Obfuscated JavaScript – 3
1005170* - Java Applet Remote Code Execution Vulnerability
1006545 - Microsoft Office CGM Image Converter Buffer Overflow Vulnerability
1006598 - Microsoft Windows DLL Planting Remote Code Execution Vulnerability Over WebDav (CVE-2015-0096)
1004226* - Microsoft Windows Help Centre Malformed Escape Sequences Vulnerability
1006582 - Microsoft Windows Help Centre Malformed Escape Sequences Vulnerability (CVE-2010-1885)
1006577* - Microsoft Windows Text Service Remote Code Execution Vulnerability (CVE-2015-0081)
1006536 - Oracle Java SE Hotspot Object Arbitrary Code Execution Vulnerability (CVE-2015-0395)
1006585 - Oracle Java SE Remote Java Runtime Environment Vulnerability (CVE-2012-0507) -1
1004867* - Oracle Java SE Rhino Script Engine Remote Code Execution Vulnerability
1005924* - Restrict Download Of EICAR Test File Over HTTP


Web Client Internet Explorer
1006603 - Microsoft Internet Explorer CSS Parsing Remote Code Execution (CVE-2010-3971)
1006564* - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2015-0099)
1006570* - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2015-0100)
1006565* - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2015-1622)
1005908* - Microsoft Internet Explorer Remote Code Execution Vulnerability (CVE-2014-0322)
1005911* - Microsoft Internet Explorer Remote Code Execution Vulnerability (CVE-2014-0322) - 3
1006557 - Microsoft Windows Task Scheduler Remote Buffer Overflow Vulnerability
1006324* - Windows OLE Automation Array Remote Code Execution Vulnerability (CVE-2014-6332)


Web Client SSL
1005040* - Identified Revoked Certificate Authority In SSL Traffic


Web Server Apache
1006027* - Apache HTTP Server Denial Of Service Vulnerability (CVE-2014-0098)


Web Server Common
1005434* - Disallow Upload Of A File (Php/Class/Archive)


Windows Services RPC Client
1006554* - Microsoft Windows DLL Planting Remote Code Execution Vulnerability (CVE-2015-0096)
1006558 - Microsoft Windows Task Scheduler Remote Buffer Overflow Vulnerability - 1


Windows Services RPC Server
1006579 - Microsoft Windows NETLOGON Spoofing Vulnerability (CVE-2015-0005)


Integrity Monitoring Rules:

1003019* - Trend Micro Deep Security Agent


Log Inspection Rules:

There are no new or updated Log Inspection Rules in this Security Update.