Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Update Details

Security Intelligence Center
Print

Update #3055 (04/12/2018)

14 new signatures:

HIGHHTTP:STC:DL:CVE-2018-1013-RCEHTTP: Microsoft Graphics CVE-2018-1013 Remote Code Execution
HIGHHTTP:STC:IE:CVE-2018-0995-RCEHTTP: Microsoft IE CVE-2018-0995 Chakra Scripting Engine Memory Corruption
HIGHHTTP:STC:IE:CVE-2018-1011-RCEHTTP: Microsoft Excel CVE-2018-1011 Remote Code Execution
HIGHHTTP:STC:IE:CVE-2018-1012-RCEHTTP: Microsoft Graphics CVE-2018-1012 Remote Code Execution 1
HIGHHTTP:STC:IE:CVE-2018-0996-CEHTTP: Microsoft IE CVE-2018-0996 Scripting Engine Memory Corruption Vulnerability
HIGHHTTP:STC:IE:CVE-2018-0990-RCEHTTP: Microsoft Edge CVE-2018-0990 Remote Code Execution
HIGHHTTP:STC:DL:CVE-2018-1015-RCEHTTP: Microsoft Graphics CVE-2018-1015 Remote Code Execution
HIGHHTTP:STC:IE:CVE-2018-0997-RCEHTTP: Microsoft Internet Explorer CVE-2018-0997 Memory Corruption
HIGHHTTP:STC:IE:CVE-2018-0991-RCEHTTP: Microsoft Internet Explorer CVE-2018-0991 Memory Corruption
HIGHHTTP:STC:DL:CVE-2018-1016-RCEHTTP: Microsoft Graphics CVE-2018-1016 Remote Code Execution
HIGHHTTP:STC:IE:CVE-2018-0998-INFOHTTP: Microsoft Edge CVE-2018-0998 Information Disclosure
HIGHHTTP:STC:DL:CVE-2018-0986-RCEHTTP: Windows Defender CVE-2018-0986 Remote Code Execution
HIGHHTTP:STC:IE:CVE-2018-0993RCEHTTP: Microsoft IE Chakra Scripting Engine CVE-2018-0993 Memory Corruption
HIGHHTTP:STC:IE:CVE-2018-0994RCEHTTP: Microsoft IE Chakra Scripting Engine CVE-2018-0994 Memory Corruption

1 updated signature:

HIGHHTTP:STC:IE:CVE-2018-1010-RCEHTTP: Microsoft Graphics CVE-2018-1010 Remote Code Execution


Details of the signatures included within this bulletin:

HTTP:STC:DL:CVE-2018-1013-RCE - HTTP: Microsoft Graphics CVE-2018-1013 Remote Code Execution

Severity: HIGH

Description:

This signature detects attempt to exploit a known vulnerability against Microsoft font library. Successful exploitation could allow an attacker to execute arbitrary code into the application's context.

Supported On:

isg-3.5.141652, idp-5.1.110161014, idp-4.0.0, idp-4.0.110090709, idp-4.0.110090831, idp-4.1.0, mx-16.1, idp-4.2.0, srx-17.3, vmx-17.4, idp-5.0.0, vsrx-17.4, srx-branch-17.4, srx-17.4, isg-3.1.134269, isg-3.1.135801, isg-3.4.0, srx-branch-x49, isg-3.5.0, j-series-9.5, idp-4.2.110100823, idp-4.2.110101203, idp-5.1.0, idp-4.1.110110609, idp-4.1.110110719, mx-11.4, isg-3.5.141818, isg-3.4.139899, idp-5.0.110121210, srx-12.1, srx-branch-12.1, isg-3.4.140032, idp-5.0.110130325, vsrx-12.1, isg-3.0.0, idp-5.1.110170603, vsrx-15.1, vsrx-x49, srx-x49

References:

  • cve: CVE-2018-1013

HTTP:STC:IE:CVE-2018-0995-RCE - HTTP: Microsoft IE CVE-2018-0995 Chakra Scripting Engine Memory Corruption

Severity: HIGH

Description:

This signature detects an attempt to exploit an Memory Corruption Vulnerability in Microsoft Internet Explorer. Successful exploitation could allow an attacker to execute arbitrary code into the application's context.

Supported On:

isg-3.5.141652, idp-5.1.110161014, idp-4.0.0, idp-4.0.110090709, idp-4.0.110090831, idp-4.1.0, mx-16.1, idp-4.2.0, srx-17.3, vmx-17.4, isg-3.5.141818, vsrx-17.4, srx-branch-17.4, srx-17.4, isg-3.1.134269, isg-3.1.135801, isg-3.4.0, srx-branch-x49, isg-3.5.0, j-series-9.5, idp-4.2.110100823, idp-4.2.110101203, idp-5.1.0, idp-4.1.110110609, idp-4.1.110110719, mx-11.4, idp-5.0.0, isg-3.4.139899, idp-5.0.110121210, srx-12.1, srx-branch-12.1, isg-3.4.140032, idp-5.0.110130325, vsrx-12.1, idp-5.1.110170603, vsrx-15.1, vsrx-x49, srx-x49

References:

  • cve: CVE-2018-0995

HTTP:STC:IE:CVE-2018-1010-RCE - HTTP: Microsoft Graphics CVE-2018-1010 Remote Code Execution

Severity: HIGH

Description:

This signature detects an attempt to exploit an Remote Code Execution Vulnerability in Microsoft Graphics. Successful exploitation could allow an remote code Execution and gain the current user controls.

Supported On:

isg-3.5.141652, idp-5.1.110161014, idp-4.0.0, idp-4.0.110090709, idp-4.0.110090831, idp-4.1.0, mx-16.1, idp-4.2.0, srx-17.3, vmx-17.4, idp-5.0.0, vsrx-17.4, srx-branch-17.4, srx-17.4, isg-3.1.134269, isg-3.1.135801, isg-3.4.0, srx-branch-x49, isg-3.5.0, j-series-9.5, idp-4.2.110100823, idp-4.2.110101203, idp-5.1.0, idp-4.1.110110609, idp-4.1.110110719, mx-11.4, isg-3.5.141818, isg-3.4.139899, idp-5.0.110121210, srx-12.1, srx-branch-12.1, isg-3.4.140032, idp-5.0.110130325, vsrx-12.1, isg-3.0.0, idp-5.1.110170603, vsrx-15.1, vsrx-x49, srx-x49

References:

  • cve: CVE-2018-1010

HTTP:STC:IE:CVE-2018-1011-RCE - HTTP: Microsoft Excel CVE-2018-1011 Remote Code Execution

Severity: HIGH

Description:

This signature detects an attempt to exploit an Remote Code Execution Vulnerability in Microsoft Excel. Successful exploitation could allow an remote code Execution and gain the current user controls.

Supported On:

isg-3.5.141652, idp-5.1.110161014, idp-4.0.0, idp-4.0.110090709, idp-4.0.110090831, idp-4.1.0, mx-16.1, idp-4.2.0, srx-17.3, vmx-17.4, idp-5.0.0, vsrx-17.4, srx-branch-17.4, srx-17.4, isg-3.1.134269, isg-3.1.135801, isg-3.4.0, srx-branch-x49, isg-3.5.0, j-series-9.5, idp-4.2.110100823, idp-4.2.110101203, idp-5.1.0, idp-4.1.110110609, idp-4.1.110110719, mx-11.4, isg-3.5.141818, isg-3.4.139899, idp-5.0.110121210, srx-12.1, srx-branch-12.1, isg-3.4.140032, idp-5.0.110130325, vsrx-12.1, isg-3.0.0, idp-5.1.110170603, vsrx-15.1, vsrx-x49, srx-x49

References:

  • cve: CVE-2018-1011

HTTP:STC:IE:CVE-2018-1012-RCE - HTTP: Microsoft Graphics CVE-2018-1012 Remote Code Execution 1

Severity: HIGH

Description:

This signature detects an attempt to exploit an Remote Code Execution Vulnerability in Microsoft Font Library. Successful exploitation could allow an remote code Execution and gain the current user controls.

Supported On:

isg-3.5.141652, idp-5.1.110161014, idp-4.0.0, idp-4.0.110090709, idp-4.0.110090831, idp-4.1.0, mx-16.1, idp-4.2.0, srx-17.3, vmx-17.4, isg-3.5.141818, vsrx-17.4, srx-branch-17.4, isg-3.0.0, idp-5.1.110170603, isg-3.1.135801, isg-3.4.0, srx-branch-x49, isg-3.5.0, j-series-9.5, idp-4.2.110100823, idp-4.2.110101203, idp-5.1.0, idp-4.1.110110609, idp-4.1.110110719, mx-11.4, idp-5.0.0, isg-3.4.139899, idp-5.0.110121210, srx-12.1, srx-branch-12.1, isg-3.4.140032, idp-5.0.110130325, vsrx-12.1, srx-17.4, isg-3.1.134269, vsrx-15.1, vsrx-x49, srx-x49

References:

  • bugtraq: 103597
  • cve: CVE-2018-1012

HTTP:STC:IE:CVE-2018-0996-CE - HTTP: Microsoft IE CVE-2018-0996 Scripting Engine Memory Corruption Vulnerability

Severity: HIGH

Description:

This signature detects an attempt to exploit an Memory Corruption Vulnerability in Microsoft Internet Explorer. Successful exploitation could allow an attacker to execute arbitrary code into the users's context.

Supported On:

isg-3.5.141652, idp-5.1.110161014, idp-4.0.0, idp-4.0.110090709, idp-4.0.110090831, idp-4.1.0, mx-16.1, idp-4.2.0, srx-17.3, vmx-17.4, isg-3.5.141818, vsrx-17.4, srx-branch-17.4, srx-17.4, isg-3.1.134269, isg-3.1.135801, isg-3.4.0, srx-branch-x49, isg-3.5.0, j-series-9.5, idp-4.2.110100823, idp-4.2.110101203, idp-5.1.0, idp-4.1.110110609, idp-4.1.110110719, mx-11.4, idp-5.0.0, isg-3.4.139899, idp-5.0.110121210, srx-12.1, srx-branch-12.1, isg-3.4.140032, idp-5.0.110130325, vsrx-12.1, idp-5.1.110170603, vsrx-15.1, vsrx-x49, srx-x49

References:

  • cve: CVE-2018-0996

HTTP:STC:IE:CVE-2018-0990-RCE - HTTP: Microsoft Edge CVE-2018-0990 Remote Code Execution

Severity: HIGH

Description:

This signature detects attempts to exploit a Memory Corruption Vulnerability against Microsoft Edge. A successful attack can lead to Remote Code Execution.

Supported On:

isg-3.5.141652, idp-5.1.110161014, idp-4.0.0, idp-4.0.110090709, idp-4.0.110090831, idp-4.1.0, mx-16.1, idp-4.2.0, srx-17.3, vmx-17.4, isg-3.5.141818, vsrx-17.4, srx-branch-17.4, srx-17.4, isg-3.1.134269, isg-3.1.135801, isg-3.4.0, srx-branch-x49, isg-3.5.0, j-series-9.5, idp-4.2.110100823, idp-4.2.110101203, idp-5.1.0, idp-4.1.110110609, idp-4.1.110110719, mx-11.4, idp-5.0.0, isg-3.4.139899, idp-5.0.110121210, srx-12.1, srx-branch-12.1, isg-3.4.140032, idp-5.0.110130325, vsrx-12.1, idp-5.1.110170603, vsrx-15.1, vsrx-x49, srx-x49

References:

  • cve: CVE-2018-0990

HTTP:STC:DL:CVE-2018-1015-RCE - HTTP: Microsoft Graphics CVE-2018-1015 Remote Code Execution

Severity: HIGH

Description:

This signature detects attempt to exploit a known vulnerability against Microsoft font library. Successful exploitation could allow an attacker to execute arbitrary code into the application's context.

Supported On:

isg-3.5.141652, idp-5.1.110161014, idp-4.0.0, idp-4.0.110090709, idp-4.0.110090831, idp-4.1.0, mx-16.1, idp-4.2.0, srx-17.3, vmx-17.4, isg-3.5.141818, vsrx-17.4, srx-branch-17.4, isg-3.0.0, idp-5.1.110170603, isg-3.1.135801, isg-3.4.0, srx-branch-x49, isg-3.5.0, j-series-9.5, idp-4.2.110100823, idp-4.2.110101203, idp-5.1.0, idp-4.1.110110609, idp-4.1.110110719, mx-11.4, idp-5.0.0, isg-3.4.139899, idp-5.0.110121210, srx-12.1, srx-branch-12.1, isg-3.4.140032, idp-5.0.110130325, vsrx-12.1, srx-17.4, isg-3.1.134269, vsrx-15.1, vsrx-x49, srx-x49

References:

  • bugtraq: 103600
  • cve: CVE-2018-1015

HTTP:STC:IE:CVE-2018-0997-RCE - HTTP: Microsoft Internet Explorer CVE-2018-0997 Memory Corruption

Severity: HIGH

Description:

This signature detects an attempt to exploit an Memory Corruption Vulnerability in Microsoft Internet Explorer. Successful exploitation could allow an attacker to execute arbitrary code into the users's context.

Supported On:

isg-3.5.141652, idp-5.1.110161014, idp-4.0.0, idp-4.0.110090709, idp-4.0.110090831, idp-4.1.0, mx-16.1, idp-4.2.0, srx-17.3, vmx-17.4, isg-3.5.141818, vsrx-17.4, srx-branch-17.4, srx-17.4, isg-3.1.134269, isg-3.1.135801, isg-3.4.0, srx-branch-x49, isg-3.5.0, j-series-9.5, idp-4.2.110100823, idp-4.2.110101203, idp-5.1.0, idp-4.1.110110609, idp-4.1.110110719, mx-11.4, idp-5.0.0, isg-3.4.139899, idp-5.0.110121210, srx-12.1, srx-branch-12.1, isg-3.4.140032, idp-5.0.110130325, vsrx-12.1, idp-5.1.110170603, vsrx-15.1, vsrx-x49, srx-x49

References:

  • cve: CVE-2018-0997

HTTP:STC:IE:CVE-2018-0991-RCE - HTTP: Microsoft Internet Explorer CVE-2018-0991 Memory Corruption

Severity: HIGH

Description:

This signature detects an attempt to exploit an Memory Corruption Vulnerability in Microsoft Internet Explorer. Successful exploitation could allow an attacker to execute arbitrary code into the application's context.

Supported On:

isg-3.5.141652, idp-5.1.110161014, idp-4.0.0, idp-4.0.110090709, idp-4.0.110090831, idp-4.1.0, mx-16.1, idp-4.2.0, srx-17.3, vmx-17.4, isg-3.5.141818, vsrx-17.4, srx-branch-17.4, srx-17.4, isg-3.1.134269, isg-3.1.135801, isg-3.4.0, srx-branch-x49, isg-3.5.0, j-series-9.5, idp-4.2.110100823, idp-4.2.110101203, idp-5.1.0, idp-4.1.110110609, idp-4.1.110110719, mx-11.4, idp-5.0.0, isg-3.4.139899, idp-5.0.110121210, srx-12.1, srx-branch-12.1, isg-3.4.140032, idp-5.0.110130325, vsrx-12.1, idp-5.1.110170603, vsrx-15.1, vsrx-x49, srx-x49

References:

  • cve: CVE-2018-0991

HTTP:STC:DL:CVE-2018-1016-RCE - HTTP: Microsoft Graphics CVE-2018-1016 Remote Code Execution

Severity: HIGH

Description:

This signature detects attempt to exploit a known vulnerability against Microsoft font library. Successful exploitation could allow an attacker to execute arbitrary code into the application's context.

Supported On:

isg-3.5.141652, idp-5.1.110161014, idp-4.0.0, idp-4.0.110090709, idp-4.0.110090831, idp-4.1.0, mx-16.1, idp-4.2.0, srx-17.3, vmx-17.4, idp-5.0.0, vsrx-17.4, srx-branch-17.4, srx-17.4, isg-3.1.134269, isg-3.1.135801, isg-3.4.0, srx-branch-x49, isg-3.5.0, j-series-9.5, idp-4.2.110100823, idp-4.2.110101203, idp-5.1.0, idp-4.1.110110609, idp-4.1.110110719, mx-11.4, isg-3.5.141818, isg-3.4.139899, idp-5.0.110121210, srx-12.1, srx-branch-12.1, isg-3.4.140032, idp-5.0.110130325, vsrx-12.1, isg-3.0.0, idp-5.1.110170603, vsrx-15.1, vsrx-x49, srx-x49

References:

  • cve: CVE-2018-1016

HTTP:STC:IE:CVE-2018-0998-INFO - HTTP: Microsoft Edge CVE-2018-0998 Information Disclosure

Severity: HIGH

Description:

This signature detects an attempt to exploit an information Disclosure Vulnerability in Microsoft Edge. Successful exploitation could allow an attacker to execute arbitrary code into the application's context.

Supported On:

isg-3.5.141652, idp-5.1.110161014, mx-11.4, idp-4.1.0, mx-16.1, srx-17.3, vmx-17.4, isg-3.5.141818, vsrx-17.4, srx-branch-17.4, srx-17.4, idp-5.1.110170603, vsrx-x49, srx-x49, srx-branch-x49, j-series-9.5, srx-12.1, srx-branch-12.1, vsrx-12.1, vsrx-15.1

References:

  • cve: CVE-2018-0998

HTTP:STC:DL:CVE-2018-0986-RCE - HTTP: Windows Defender CVE-2018-0986 Remote Code Execution

Severity: HIGH

Description:

This signature detects attempts to exploit a known vulnerability against Windows Defender. A successful attack can lead to arbitrary code execution.

Supported On:

isg-3.5.141652, idp-5.1.110161014, idp-4.0.0, idp-4.0.110090709, idp-4.0.110090831, idp-4.1.0, mx-16.1, idp-4.2.0, srx-17.3, vmx-17.4, idp-5.0.0, vsrx-17.4, srx-branch-17.4, srx-17.4, isg-3.1.134269, isg-3.1.135801, isg-3.4.0, srx-branch-x49, isg-3.5.0, j-series-9.5, idp-4.2.110100823, idp-4.2.110101203, idp-5.1.0, idp-4.1.110110609, idp-4.1.110110719, mx-11.4, isg-3.5.141818, isg-3.4.139899, idp-5.0.110121210, srx-12.1, srx-branch-12.1, isg-3.4.140032, idp-5.0.110130325, vsrx-12.1, isg-3.0.0, idp-5.1.110170603, vsrx-15.1, vsrx-x49, srx-x49

References:

  • cve: CVE-2018-0986

HTTP:STC:IE:CVE-2018-0993RCE - HTTP: Microsoft IE Chakra Scripting Engine CVE-2018-0993 Memory Corruption

Severity: HIGH

Description:

This signature detects attempts to exploit a Memory Corruption Vulnerability against Microsoft IE. A successful attack can lead to arbitrary code execution

Supported On:

isg-3.5.141652, idp-5.1.110161014, idp-4.0.0, idp-4.0.110090709, idp-4.0.110090831, idp-4.1.0, mx-16.1, idp-4.2.0, srx-17.3, vmx-17.4, isg-3.5.141818, vsrx-17.4, srx-branch-17.4, srx-17.4, isg-3.1.134269, isg-3.1.135801, isg-3.4.0, srx-branch-x49, isg-3.5.0, j-series-9.5, idp-4.2.110100823, idp-4.2.110101203, idp-5.1.0, idp-4.1.110110609, idp-4.1.110110719, mx-11.4, idp-5.0.0, isg-3.4.139899, idp-5.0.110121210, srx-12.1, srx-branch-12.1, isg-3.4.140032, idp-5.0.110130325, vsrx-12.1, idp-5.1.110170603, vsrx-15.1, vsrx-x49, srx-x49

References:

  • cve: CVE-2018-0993

HTTP:STC:IE:CVE-2018-0994RCE - HTTP: Microsoft IE Chakra Scripting Engine CVE-2018-0994 Memory Corruption

Severity: HIGH

Description:

This signature detects attempts to exploit a Memory Corruption Vulnerability against Microsoft Edge. A successful attack can lead to Remote Code Execution.

Supported On:

isg-3.5.141652, idp-5.1.110161014, idp-4.0.0, idp-4.0.110090709, idp-4.0.110090831, idp-4.1.0, mx-16.1, idp-4.2.0, srx-17.3, vmx-17.4, isg-3.5.141818, vsrx-17.4, srx-branch-17.4, srx-17.4, isg-3.1.134269, isg-3.1.135801, isg-3.4.0, srx-branch-x49, isg-3.5.0, j-series-9.5, idp-4.2.110100823, idp-4.2.110101203, idp-5.1.0, idp-4.1.110110609, idp-4.1.110110719, mx-11.4, idp-5.0.0, isg-3.4.139899, idp-5.0.110121210, srx-12.1, srx-branch-12.1, isg-3.4.140032, idp-5.0.110130325, vsrx-12.1, idp-5.1.110170603, vsrx-15.1, vsrx-x49, srx-x49

References:

  • cve: CVE-2018-0994
Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out