IPS Signature Database Update

Name	ips.sig
Version	2.1.578
StoneOS	StoneOS 5.0R4F3.1 or above
Release Date	2024-10-14
New Signature (29)	Rule ID	Rule Name	StonesOS	Detail
	105410	Ransomware Activity: Ransomware/Cerber Onion Domain Lookup	5.5R5 or above	click for more information
	338456	pgAdmin 8.3 Session Directory Traversal Vulnerability (CVE-2024-2044)	5.0R4 or above	click for more information
	338452	WANHU OA fileupload.controller Aribitrary File Upload Vulnerability	5.0R4 or above	click for more information
	105393	Ransomware Activity: DNS Query to Cerber Domain	5.5R5 or above	click for more information
	105391	Ransomware Activity: CryptoWall .onion Proxy Domain (7oqnsnzwwnm6zb7y)	5.5R5 or above	click for more information
	332585	Ransomware Activity: Jaff Ransomware Checkin	5.5R5 or above	click for more information
	338448	GiveWP PHP Object Injection Vulnerability (CVE-2024-8353)	5.5R5 or above	click for more information
	338459	Mlflow Cross Site Scripting Vulnerability (CVE-2023-6568)	5.5R5 or above	click for more information
	105396	Ransomware Activity: Ransomware Locky .onion Payment Domain (mphtadhci5mrdlju)	5.5R5 or above	click for more information
	105401	Ransomware Activity: DNS Query to Cerber Domain	5.5R5 or above	click for more information
	332598	Ransomware Activity: HTML/Xbash Hex Encoded PS WebClient Object Inbound - Stage 1	5.5R5 or above	click for more information
	338455	DataEase Infomation Disclosure Vulnerability (CVE-2024-30269)	5.0R4 or above	click for more information
	105392	Ransomware Activity: TeslaCrypt/AlphaCrypt Variant .onion Proxy Domain	5.5R5 or above	click for more information
	105390	Ransomware Activity: Ransomware/Cerber Onion Domain Lookup	5.5R5 or above	click for more information
	338451	Yonyou Chanjet T+ FileUploadHandler.ashx Arbitrary File Upload Vulnerability	5.0R4 or above	click for more information
	332605	Trojan Activity: StealerNeko CnC Checkin	5.5R5 or above	click for more information
	105408	Ransomware Activity: Xbash CnC DNS Lookup	5.5R5 or above	click for more information
	338454	TongTech upload Interface Arbitrary File Upload Vulnerability	5.0R4 or above	click for more information
	105399	Ransomware Activity: ABUSE.CH Domain Detected (Locky C2)	5.5R5 or above	click for more information
	105389	Ransomware Activity: Ransomware/Cerber Onion Domain Lookup	5.5R5 or above	click for more information
	......
Updated Signature (4)	Rule ID	Rule Name	StonesOS	Detail
	331367	TYPO3 sa-2010-020 Remote File Disclosure Vulnerability (CVE-2010-3714)	5.5R5 or above	Click here for more information
	306634	HTTP File Server NULL Byte Injection Vulnerability -4 (CVE-2014-6287)	5.5R5 or above	Click here for more information
	317621	Mantis Bug Tracker Verify.php Confirm_hash Remote Password Reset Vulnerability -1 (CVE-2017-7615)	5.5R5 or above	Click here for more information
	330917	ThinkCMF Alias Parameter Arbitrary Code Execution Vulnerability (CVE-2019-7580)	5.5R5 or above	Click here for more information