Rule Update

18-030 (June 5, 2018)


  DESCRIPTION

* indicates a new version of an existing rule

Deep Packet Inspection Rules:

Web Client Common
1009120 - Adobe Acrobat And Reader XFA 'Submission Handler' Privilege Escalation Vulnerability (CVE-2018-4995)
1008984 - Foxit Reader JPXDecode stream Out-Of-Bounds Write Remote Code Execution Vulnerability
1008742 - IBM Notes Remote Denial Of Service Vulnerability (CVE-2017-1130)
1009088* - Microsoft Windows Multiple Elevation Of Privilege Vulnerabilities (May 2018)


Web Client Internet Explorer/Edge
1009123 - Microsoft Internet Explorer Scripting Engine Information Disclosure Vulnerability (CVE-2018-0981)
1009122 - Microsoft Internet Explorer Scripting Engine Information Disclosure Vulnerability (CVE-2018-0987)
1009121 - Microsoft Internet Explorer Scripting Engine Information Disclosure Vulnerability (CVE-2018-1000)


Web Server Common
1005839* - Identified XML External Entity Injection In HTTP Request


Integrity Monitoring Rules:

1009060 - Kubernetes Cluster Master


Log Inspection Rules:

1002798* - Database Server - PostgreSQL
1009105 - Kubernetes
1002835* - Web Server - Web Access Events

Featured Stories