IPS Signature Database Update
| Name | ips.sig | |||
| Version | 3.0.267 | |||
| StoneOS | Firewall 5.5R8P2 or above, and NIPS/IDS 5.5R5-3.5 or above, and BDS 5.5R8-3.3 or above | |||
| Release Date | 2025-07-28 | |||
| New Signature (123) |
Rule ID | Rule Name | StoneOS | Detail |
| 339106 | WebLogic Servlet Type MemoryShell Detection | 5.0R4 or above | click for more information | |
| 717146 | JAVA Servlet Type MemoryShell Detection - Base64 Encoding 2 | 5.5R8 or above | click for more information | |
| 339262 | Wing FTP Server loginok.html Remote Command Execution Vulnerability | 5.0R4 or above | click for more information | |
| 339103 | Spring WebFlux MemoryShell Detection | 5.0R4 or above | click for more information | |
| 717110 | Java Code Injection Detection - Suspicious Reflective Class Load 2 | 5.5R8 or above | click for more information | |
| 339268 | SHIKONGZHIYOU ERP API updater.uploadStudioFile Arbitrary File Upload Vulnerability | 5.5R5 or above | click for more information | |
| 339054 | Shiro Filter Type MemoryShell Detection - Base64 Encoding 1 | 5.5R8 or above | click for more information | |
| 717123 | Java Filter Type MemoryShell Detection - 3 | 5.5R8 or above | click for more information | |
| 339289 | Node.js Windows Path Traversal Vulnerability - 3 (CVE-2025-27210) | 5.0R4 or above | click for more information | |
| 339116 | JAVA Servlet Type MemoryShell Detection - Base64 Encoding 2 | 5.5R8 or above | click for more information | |
| 339043 | JAVA Servlet Type MemoryShell Detection - 1 | 5.0R4 or above | click for more information | |
| 717132 | Spring Controller MemoryShell Detection | 5.0R4 or above | click for more information | |
| 339105 | WebLogic Listener Type MemoryShell Detection | 5.0R4 or above | click for more information | |
| 717145 | JAVA Listener Type MemoryShell Detection - Base64 Encoding 1 | 5.5R8 or above | click for more information | |
| 339261 | Yonyou NC API changeEvent SQL Injection Vulnerability | 5.5R5 or above | click for more information | |
| 339098 | Jetty MemoryShell Detection | 5.0R4 or above | click for more information | |
| 717096 | JAVA Servlet Type MemoryShell Detection - 1 | 5.0R4 or above | click for more information | |
| 339278 | Jinher OA API ActionDataSet XXE Vulnerability | 5.0R4 or above | click for more information | |
| 717109 | JAVA Filter Type MemoryShell Detection - Base64 Encoding 1 | 5.5R8 or above | click for more information | |
| 339267 | Unibox Router download_csv.php Arbitrary File Read Vulnerability | 5.0R4 or above | click for more information | |
| ...... | ||||
| Updated Signature (20) |
Rule ID | Rule Name | StoneOS | Detail |
| 312760 | SolarWinds Storage Resource Monitor Profiler SQL Injection Vulnerability (CVE-2016-4350) | 5.0R4 or above | Click here for more information | |
| 332889 | Micro Focus Rumba Stack-based Buffer Overflow Vulnerability (CVE-2016-5228) | 5.5R5 or above | Click here for more information | |
| 332844 | IBM WebSphere Application Server Buffer Overflow Vulnerability (CVE-2005-1872) | 5.5R8 or above | Click here for more information | |
| 332646 | Worm Activity: Worm.Win32/Esfury.X Checkin | 5.0R4 or above | Click here for more information | |
| 338742 | Apache Tomcat Remote Code Execution Vulnerability (CVE-2025-24813) | 5.0R4 or above | Click here for more information | |
| 332223 | Advantech WebAccess SQL Injection Vulnerability (CVE-2014-0763) | 5.5R5 or above | Click here for more information | |
| 505840 | Novell Groupwise Internet Agent RCPT Command Buffer Overflow Vulnerability (CVE-2009-0410) | 5.5R5 or above | Click here for more information | |
| 338452 | WANHU OA fileupload.controller Aribitrary File Upload Vulnerability | 5.0R4 or above | Click here for more information | |
| 332210 | Microsoft Internet Explorer Use-After-Free Vulnerability (CVE-2013-3117) | 5.5R8 or above | Click here for more information | |
| 332894 | Jive Software Openfire Jabber Server Authentication Bypass Vulnerability | 5.0R4 or above | Click here for more information | |
| 332904 | HP Application Lifecycle Management ActiveX Control Remote Code Execution Vulnerability | 5.5R5 or above | Click here for more information | |
| 333759 | Win32/Wagiclas.B / Backdoor.Win32.DarkMoon.B Checkin | 5.5R5 or above | Click here for more information | |
| 332850 | Novell GroupWise Messenger nmma.exe Login Memory Corruption Vulnerability | 5.0R4 or above | Click here for more information | |
| 338332 | Apache Tomcat Infomation Disclosure Vulnerability (CVE-2024-21733) | 5.5R5 or above | Click here for more information | |
| 332838 | EMC Captiva PixTools Distributed Imaging ActiveX Control File Creation Vulnerability (CVE-2009-3573) | 5.5R5 or above | Click here for more information | |
| 332829 | Microsoft Office MSODataSourceControl ActiveX Control Denial of Service Vulnerability (CVE-2007-3282) | 5.0R4 or above | Click here for more information | |
| 339249 | Cobalt Strike Beacon Response Detection | 5.5R5 or above | Click here for more information | |
| 332868 | Oracle AutoVue AutoVueX ActiveX Control Export3DBom Remote Code Execution Vulnerability | 5.5R5 or above | Click here for more information | |
| 339227 | Apache httpd Ranges Header Field Memory Exhaustion Vulnerability (CVE-2011-3192) | 5.5R4 or above | Click here for more information | |
| 332867 | Oracle AutoVue AutoVueX ActiveX Control Export3DBom Remote Code Execution Vulnerability | 5.5R5 or above | Click here for more information | |
| ...... | ||||