Rule Update
15-037 (December 16, 2015)
DESCRIPTION
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
DNS Client
1007299 - Identified DNS Response With Low TTL Value
1007297 - Microsoft Windows DNS Use After Free Vulnerability (CVE-2015-6125)
Web Application PHP Based
1007298 - Joomla Core Remote Code Execution Vulnerability (CVE-2015-8562)
Web Client Common
1006070* - Adobe Flash Player Buffer Overflow Vulnerability (CVE-2014-0515) - 1
1007211* - Microsoft .NET Framework ASLR Security Bypass Vulnerability (CVE-2015-6115)
1007161* - Microsoft Windows Graphics Memory Remote Code Execution Vulnerability (CVE-2015-6104)
Web Client Internet Explorer/Edge
1007224* - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2015-6083)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Deep Packet Inspection Rules:
DNS Client
1007299 - Identified DNS Response With Low TTL Value
1007297 - Microsoft Windows DNS Use After Free Vulnerability (CVE-2015-6125)
Web Application PHP Based
1007298 - Joomla Core Remote Code Execution Vulnerability (CVE-2015-8562)
Web Client Common
1006070* - Adobe Flash Player Buffer Overflow Vulnerability (CVE-2014-0515) - 1
1007211* - Microsoft .NET Framework ASLR Security Bypass Vulnerability (CVE-2015-6115)
1007161* - Microsoft Windows Graphics Memory Remote Code Execution Vulnerability (CVE-2015-6104)
Web Client Internet Explorer/Edge
1007224* - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2015-6083)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.