Login
| Title | Size | Downloads |
|---|---|---|
| V7-IPS-1.0.240.dat | 11.88 MB |
Version number
V7-IPS-1.0.240
MD5 number
bcc0ec68b1f878f763e45407d3e3b22f
Update time
2023-07-10
Update attack list
Key new rules:
------------------------------
48563 ZhiYuan_OA_API_Upload_File_Getshell_Detect[2]
---- Category: Vulnerability
---- Description: Unauthorized access exists on the fixed interface of Zhiyuan OA. By creating malicious requests,
---- attackers can upload malicious script files without login to control the server.
48566 NginxWebUI_Interface_Argument_Command_Execution_Vulnerability[2]
---- Category: Vulnerability
---- Description: The nginxWebUI is a graphical tool for managing nginx configuration.
---- You can use web pages to quickly configure various nginx functions, including http forwarding,
---- tcp forwarding, reverse proxy, load balancing, static html server, and automatic application,
---- renewal, and configuration of ssl certificates. After configuration, the nginx.conf file can be created,
---- and nginx can be controlled to start and reload using this file to complete the graphical control closed loop of nginx.
---- Due to the problem of system permission verification in nginxWebUI, permissions can be bypassed
---- and related command interfaces in the background can be directly invoked in the foreground. At the same time,
---- because the user's input is not filtered, it is eventually possible to execute arbitrary code on the target system.
48660 Kingdee_OA_CommonFileServer_Information_Disclousure_Vulnerability[2]
---- Category: Vulnerability
---- Description: Kingdee OA system CommonFileServer has a random file reading vulnerability.
---- Remote attackers can use this vulnerability to obtain sensitive information.
Note
[1] Indicates that this change is incorporated into all security products
[2] Indicates that this change is only incorporated into the full series of F5000, T5000, T9000, M9000, F1030 and above F series products
[3] The device memory is greater than 2GB. After loading the IPS rules library file of this version, 18900 predefined rules can be generated in "Intrusion Prevention System"
[4] The device memory is less than or equal to 2GB. After loading the IPS rules library file of this version, 3057 predefined rules can be generated in "Intrusion Prevention System"
