https://live.paloaltonetworks.com/t5/general-topics/shell-shocked-bug/m-p/31469#M23029 <HTML><HEAD></HEAD><BODY><P>Hi Jeff, </P><P></P><P>We are glad to assist you. Thank you.</P></BODY></HTML> Sat, 27 Sep 2014 02:37:27 GMT ssharma 2014-09-27T02:37:27Z https://live.paloaltonetworks.com/t5/general-topics/shell-shocked-bug/m-p/31465#M23025 <HTML><HEAD></HEAD><BODY><P>Any update from Palo Alto on the Shell Shock Bug that has been reported?</P></BODY></HTML> Thu, 25 Sep 2014 20:28:17 GMT https://live.paloaltonetworks.com/t5/general-topics/shell-shocked-bug/m-p/31465#M23025 jeffdwilliams 2014-09-25T20:28:17Z https://live.paloaltonetworks.com/t5/general-topics/shell-shocked-bug/m-p/31466#M23026 <HTML><HEAD></HEAD><BODY><P>We have an update for the treat with content update 457. Make sure you are running latest one (Device -&gt; Dynamic Updates). Threat ID 36729 and default action is set to "Alert". You can change it to drop from Objects -&gt; Vulnerability Protection -&gt; Exceptions (check show signatures) and search for 36729 and change the action and commit. Hope this helps. Thank you.</P></BODY></HTML> Thu, 25 Sep 2014 20:32:08 GMT https://live.paloaltonetworks.com/t5/general-topics/shell-shocked-bug/m-p/31466#M23026 ssharma 2014-09-25T20:32:08Z https://live.paloaltonetworks.com/t5/general-topics/shell-shocked-bug/m-p/31467#M23027 <HTML><HEAD></HEAD><BODY><P>Yes.&nbsp; See this site for details regarding PAN-OS and the applicability of this bug against the firewall itself:</P><P> - <A href="https://securityadvisories.paloaltonetworks.com/" title="https://securityadvisories.paloaltonetworks.com/">Palo Alto Networks Product Vulnerability - Security Advisories</A></P><P></P><P>Content version 457 was released very early this morning, which addresses the firewall's ability to block these attacks:</P><P> - <A href="https://downloads.paloaltonetworks.com/content/content-457-2377.html?__gda__=1411720349_8e8ef2a9f48ae03a3c0e30b650c2a5aa" title="https://downloads.paloaltonetworks.com/content/content-457-2377.html?__gda__=1411720349_8e8ef2a9f48ae03a3c0e30b650c2a5aa">Version 457 Content Release Notes</A></P></BODY></HTML> Thu, 25 Sep 2014 20:33:23 GMT https://live.paloaltonetworks.com/t5/general-topics/shell-shocked-bug/m-p/31467#M23027 jvalentine 2014-09-25T20:33:23Z https://live.paloaltonetworks.com/t5/general-topics/shell-shocked-bug/m-p/31468#M23028 <HTML><HEAD></HEAD><BODY><P>Thank you very much for the help.</P></BODY></HTML> Fri, 26 Sep 2014 19:20:18 GMT https://live.paloaltonetworks.com/t5/general-topics/shell-shocked-bug/m-p/31468#M23028 jeffdwilliams 2014-09-26T19:20:18Z https://live.paloaltonetworks.com/t5/general-topics/shell-shocked-bug/m-p/31469#M23029 <HTML><HEAD></HEAD><BODY><P>Hi Jeff, </P><P></P><P>We are glad to assist you. Thank you.</P></BODY></HTML> Sat, 27 Sep 2014 02:37:27 GMT https://live.paloaltonetworks.com/t5/general-topics/shell-shocked-bug/m-p/31469#M23029 ssharma 2014-09-27T02:37:27Z https://live.paloaltonetworks.com/t5/general-topics/shell-shocked-bug/m-p/31470#M23030 <HTML><HEAD></HEAD><BODY><P>Jeff,</P><P></P><P>Please note the following for our new Threat DB version 458, just released.</P><P></P><P>Also note that the default action is 'Alert' not 'Drop'.</P><P></P><P><STRONG>Notes</STRONG>: Release notes for emergency content release for CVE-2014-6271 update and CVE-2014-7169</P><P>Thursday, September 25th, Palo Alto Networks became aware of additional vulnerabilities with the Bash shell utility. The fixes for CVE-2014-6271 were incomplete from Operating System vendors and there is a new vulnerability, CVE-2014-7169, that describes this issue. To address this new vulnerability, Palo Alto Networks is releasing an emergency content update that provides updated detection of both CVE-2014-7169 and the previous CVE-2014-6271 vulnerability with an update to the IPS vulnerability Signature ID: 36729 "Bash Remote Code Execution Vulnerability" with "Critical" severity and default action of "Alert".</P><P></P><P></P><P></P><P>Don't forget to mark this discussion as answered if we have successfully addressed your issues. <img id="smileyhappy" class="emoticon emoticon-smileyhappy" src="https://live.paloaltonetworks.com/i/smilies/16x16_smiley-happy.png" alt="Smiley Happy" title="Smiley Happy" /></P></BODY></HTML> Tue, 30 Sep 2014 22:43:17 GMT https://live.paloaltonetworks.com/t5/general-topics/shell-shocked-bug/m-p/31470#M23030 mmmccorkle 2014-09-30T22:43:17Z