IPS Signature Release Note V7.16.71
Total Page:16
File Type:pdf, Size:1020Kb
SOPHOS IPS Signature Update Release Notes Version : 7.16.71 Release Date : 30th January 2020 IPS Signature Update Release Information Upgrade Applicable on IPS Signature Release Version 7.16.70 Sophos Appliance Models XG-550, XG-750, XG-650 Upgrade Information Upgrade type: Automatic Compatibility Annotations: None Introduction The Release Note document for IPS Signature Database Version 7.16.71 includes support for the new signatures. The following sections describe the release in detail. New IPS Signatures The Sophos Intrusion Prevention System shields the network from known attacks by matching the network traffic against the signatures in the IPS Signature Database. These signatures are developed to significantly increase detection performance and reduce the false alarms. Report false positives at [email protected], along with the application details. January 2020 Page 2 of 97 IPS Signature Update This IPS Release includes Nine Hundred and Sixty Four(964) signatures to address Seven Hundred and Forty(740) vulnerabilities. New signatures are added for the following vulnerabilities: Name CVE–ID Category Severity BROWSER-CHROME Google Chrome Browser CVE-2008- Browsers 2 CVE-2008-5750 Remote 5750 Parameter Injection BROWSER-CHROME Google Chrome CVE-2019- FileReader CVE-2019- Browsers 2 5786 5786 Use After Free (Published Exploit) BROWSER-CHROME Google Chrome CVE-2019- Browsers 1 FileReader CVE-2019- 5786 5786 Use After Free BROWSER-FIREFOX Mozilla Firefox CSS CVE-2006- Browsers 2 Letter-Spacing Heap 1730 Overflow BROWSER-FIREFOX Mozilla Firefox CVE- 2006-2778 CVE-2006- Browsers 2 crypto.signText 2778 Function Buffer Overflow BROWSER-IE Aurora CVE-2010- Memory Corruption Enc Browsers 1 0249 Exp CVE-2010-0249 BROWSER-IE Aurora CVE-2010- Memory Corruption Exp Browsers 1 0249 CVE-2010-0249 January 2020 Page 3 of 97 IPS Signature Update BROWSER-IE Aurora CVE-2010- Memory Corruption Exp Browsers 1 0249 Sml CVE-2010-0249 BROWSER-IE Microsoft Chakra Scripting Engine CVE-2019- Browsers 2 CVE-2019-0806 0806 Memory Corruption BROWSER-IE Microsoft Chakra Scripting Engine CVE-2019- Browsers 2 CVE-2019-0810 0810 Memory Corruption BROWSER-IE Microsoft Chakra Scripting Engine CVE-2019- Browsers 2 CVE-2019-0812 0812 Memory Corruption BROWSER-IE Microsoft CVE-2018- Edge App-v vbs Browsers 2 8495 Command BROWSER-IE Microsoft Edge Browser CVE- CVE-2018- 2018-8618 Chakra Browsers 1 8618 Script Type Confusion Exploit BROWSER-IE Microsoft Edge Chakra CVE-2018- 0780 CVE-2018- Browsers 1 AsmJSByteCodeGenerat 0780 or EmitCall Type Confusion I BROWSER-IE Microsoft Edge Chakra CVE-2018- CVE-2018- Browsers 1 8583 Scripting Engine 8583 Memory Corruption BROWSER-IE Microsoft CVE-2019- Browsers 1 January 2020 Page 4 of 97 IPS Signature Update Edge Chakra CVE-2019- 1003 1003 Remote Code Execution BROWSER-IE Microsoft Edge Chakra CVE-2019- CVE-2019- Browsers 1 1005 Remote Code 1005 Execution BROWSER-IE Microsoft Edge Chakra CVE-2019- CVE-2019- Browsers 1 1024 Remote Code 1024 Execution BROWSER-IE Microsoft Edge Chakra CVE-2019- CVE-2019- Browsers 1 1051 Remote Code 1051 Execution BROWSER-IE Microsoft Edge Chakra CVE-2019- CVE-2019- Browsers 1 1052 Remote Code 1052 Execution BROWSER-IE Microsoft Edge Chakra Eval CVE- CVE-2019- Browsers 2 2019-0592 Memory 0952 Corruption BROWSER-IE Microsoft Edge Chakra Eval CVE- CVE-2019- Browsers 2 2019-0609 Memory 0609 Corruption BROWSER-IE Microsoft Edge Chakra CVE-2019- NewScObjectNoCtor Browsers 2 0567 InitProto Type Confusion CVE-2017- BROWSER-IE Microsoft Browsers 2 Edge CVE-2017-8755 8755 January 2020 Page 5 of 97 IPS Signature Update Denial of Service BROWSER-IE Microsoft CVE-2018- Edge CVE-2018-8456 Browsers 2 8456 Type Confusion BROWSER-IE Microsoft Edge CVE-2018-8629 CVE-2018- Browsers 2 out of bounds write 8629 attempt BROWSER-IE Microsoft CVE-2018- Edge CVE-2018-8634 Browsers 2 8634 buffer overflow attempt BROWSER-IE Microsoft CVE-2019- Edge CVE-2019-0539 Browsers 2 0539 remote code execution BROWSER-IE Microsoft CVE-2019- Edge CVE-2019-0541 Browsers 2 0541 remote code execution BROWSER-IE Microsoft CVE-2019- Edge CVE-2019-0565 Browsers 2 0565 remote code execution BROWSER-IE Microsoft CVE-2019- Edge CVE-2019-0567 Browsers 2 0565 remote code execution BROWSER-IE Microsoft CVE-2019- Edge CVE-2019-0590 Browsers 1 0590 Remote Code Execution BROWSER-IE Microsoft Edge CVE-2019-0591 CVE-2019- scripting engine Browsers 2 0591 memory corruption attempt BROWSER-IE Microsoft CVE-2019- Browsers 1 January 2020 Page 6 of 97 IPS Signature Update Edge CVE-2019-0593 0593 Remote Code Execution BROWSER-IE Microsoft CVE-2019- Edge CVE-2019-0606 Browsers 1 0606 Remote Code Execution BROWSER-IE Microsoft Edge CVE-2019-0607 CVE-2019- scripting engine Browsers 2 0607 memory corruption attempt BROWSER-IE Microsoft CVE-2019- Edge CVE-2019-0610 Browsers 1 0610 Remote Code Execution BROWSER-IE Microsoft Edge CVE-2019-0612 CVE-2019- Browsers 2 Security Feature Bypass 0612 Vulnerability BROWSER-IE Microsoft CVE-2019- Edge CVE-2019-0642 Browsers 1 0642 Remote Code Execution BROWSER-IE Microsoft Edge CVE-2019-0644 CVE-2019- scripting engine Browsers 2 0644 memory corruption attempt BROWSER-IE Microsoft Edge CVE-2019-0645 CVE-2019- Browsers 2 memory corruption 0645 attempt BROWSER-IE Microsoft CVE-2019- Edge CVE-2019-0648 Browsers 2 0648 Information Disclosure BROWSER-IE Microsoft CVE-2019- Browsers 2 January 2020 Page 7 of 97 IPS Signature Update Edge CVE-2019-0652 0652 scripting engine memory corruption attempt BROWSER-IE Microsoft Edge CVE-2019-0655 CVE-2019- scripting engine Browsers 2 0655 memory corruption attempt BROWSER-IE Microsoft CVE-2019- Edge CVE-2019-0658 Browsers 1 0658 Information Disclosure BROWSER-IE Microsoft CVE-2019- Edge CVE-2019-0676 Browsers 2 0676 Information Disclosure BROWSER-IE Microsoft Edge CVE-2019-0920 CVE-2019- Browsers 2 Type Confusion 0920 Vulnerability BROWSER-IE Microsoft CVE-2019- Edge CVE-2019-0926 Browsers 2 0926 Memory Corruption BROWSER-IE Microsoft CVE-2019- Edge CVE-2019-0930 Browsers 2 0930 Information Disclosure BROWSER-IE Microsoft Edge CVE-2019-0938 CVE-2019- Browsers 2 Elevation of Privilege 0938 Vulnerability BROWSER-IE Microsoft CVE-2019- Edge CVE-2019-0940 Browsers 2 0926 Memory Corruption BROWSER-IE Microsoft CVE-2019- Browsers 2 January 2020 Page 8 of 97 IPS Signature Update Edge CVE-2019-0985 0985 Remote Code Execution Vulnerability BROWSER-IE Microsoft Edge CVE-2019-0988 CVE-2019- Browsers 2 Use After Free 0988 Vulnerability BROWSER-IE Microsoft Edge CVE-2019-0989 CVE-2019- Browsers 2 Type Confusion 0989 Vulnerability BROWSER-IE Microsoft Edge CVE-2019-0990 CVE-2019- Browsers 2 Out Of Bound Read 0990 Vulnerability BROWSER-IE Microsoft Edge CVE-2019-1002 CVE-2019- Browsers 2 Out Of Bound Read 1002 Vulnerability BROWSER-IE Microsoft Edge CVE-2019-1139 CVE-2019- Browsers 2 Type Confusion 1139 Vulnerability BROWSER-IE Microsoft Edge CVE-2019-1140 CVE-2019- Browsers 2 Type Confusion 1140 Vulnerability BROWSER-IE Microsoft Edge CVE-2019-1196 CVE-2019- Browsers 2 Type Confusion 1196 Vulnerability BROWSER-IE Microsoft CVE-2018- Edge DomAttrModified Browsers 2 8460 Use-After-Free January 2020 Page 9 of 97 IPS Signature Update BROWSER-IE Microsoft Edge Multiple Out Of CVE-2019- Browsers 2 Bound Read 0991 Vulnerability BROWSER-IE Microsoft CVE-2018- Edge OP_Memset Type Browsers 2 8505 Confusion BROWSER-IE Microsoft CVE-2018- Edge out of bounds Browsers 2 0777 write attempt BROWSER-IE Microsoft Edge Scripting CVE- CVE-2019- Browsers 1 2019-1001 Remote 1001 Code Execution BROWSER-IE Microsoft Edge Scripting CVE- CVE-2019- Browsers 1 2019-1004 Remote 1004 Code Execution BROWSER-IE Microsoft Edge Scripting CVE- CVE-2019- Browsers 1 2019-1055 Remote 1055 Code Execution BROWSER-IE Microsoft Edge Scripting CVE- CVE-2019- Browsers 1 2019-1063 Remote 1063 Code Execution BROWSER-IE Microsoft Edge Scripting CVE- CVE-2019- Browsers 1 2019-1104 Remote 1104 Code Execution BROWSER-IE Microsoft CVE-2018- Edge Scripting Engine Browsers 2 CVE-2018-0769 0769 Memory Corruption January 2020 Page 10 of 97 IPS Signature Update attempt BROWSER-IE Microsoft Edge Scripting Engine CVE-2019- Browsers 2 CVE-2019-0639 0639 Memory Corruption BROWSER-IE Microsoft Edge Scripting Engine CVE-2019- Browsers 2 CVE-2019-0680 0680 Memory Corruption BROWSER-IE Microsoft Edge Scripting Engine CVE-2019- CVE-2019-0752 Browsers 2 0752 Memory Corruption Vulnerability BROWSER-IE Microsoft Edge Scripting Engine CVE-2019- CVE-2019-0753 Browsers 2 0753 Memory Corruption Vulnerability BROWSER-IE Microsoft Edge Scripting Engine CVE-2019- Browsers 2 CVE-2019-0770 0770 Memory Corruption BROWSER-IE Microsoft Edge Scripting Engine CVE-2019- Browsers 2 CVE-2019-0771 0771 Memory Corruption BROWSER-IE Microsoft Edge Scripting Engine CVE-2019- Browsers 2 CVE-2019-0773 0773 Memory Corruption BROWSER-IE Microsoft CVE-2019- Browsers 2 Edge Scripting Engine 0829 CVE-2019-0829 January 2020 Page 11 of 97 IPS Signature Update Memory Corruption BROWSER-IE Microsoft Edge Scripting Engine CVE-2019- Browsers 2 CVE-2019-0860 0860 Memory Corruption BROWSER-IE Microsoft Edge Scripting Engine CVE-2019- Browsers 2 CVE-2019-0861 0861 Memory Corruption BROWSER-IE Microsoft Edge Scripting Engine CVE-2019- Browsers 2 CVE-2019-0884 0884 Memory Corruption BROWSER-IE Microsoft Edge Scripting Engine CVE-2019- Browsers 2 CVE-2019-0911 0911 Memory Corruption BROWSER-IE Microsoft Edge Scripting Engine CVE-2019- Browsers 2 CVE-2019-0918 0918 Memory Corruption BROWSER-IE Microsoft Internet Explorer 11 CVE-2018- Browsers 1 CVE-2018-8619 VBScript 8619 Execution Policy Bypass BROWSER-IE