https://live.paloaltonetworks.com/t5/general-topics/threat-version-434-2198-and-new-signatures-problem/m-p/3112#M2327 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>you have installed 434-2198 but the applications come with <STRONG>435-2208 <A href="https://downloads.paloaltonetworks.com/content/content-435-2203.html?__gda__=1400065094_2a36a1f76050deb0da99b924f5b89628" title="https://downloads.paloaltonetworks.com/content/content-435-2203.html?__gda__=1400065094_2a36a1f76050deb0da99b924f5b89628">Version 435 Content Release Notes</A></STRONG></P><P></P><P>Regards,</P><P>Frank</P></BODY></HTML> Wed, 07 May 2014 11:03:49 GMT FJU-ITCS 2014-05-07T11:03:49Z https://live.paloaltonetworks.com/t5/general-topics/threat-version-434-2198-and-new-signatures-problem/m-p/3109#M2324 <HTML><HEAD></HEAD><BODY><P>Hello</P><P></P><P>We can read in email "Palo Alto Networks Content Updated" that version 435 give us:</P><H3>New Vulnerability Signatures (4)</H3><TABLE><TBODY><TR><TH width="71">Severity</TH><TH width="71">ID</TH><TH>Attack Name</TH><TH width="105">CVE ID</TH><TH width="80">Vendor ID</TH><TH width="18%">Default Action</TH><TH width="18%">Minimum PAN-OS Version</TH></TR><TR><TD class="green">low</TD><TD>36421</TD><TD>Phishing Webpage Detection</TD><TD></TD><TD></TD><TD>alert</TD><TD>4.0.0</TD></TR><TR><TD class="red">critical</TD><TD>36442</TD><TD>Malicious Flash file Detection</TD><TD></TD><TD></TD><TD>alert</TD><TD>4.0.0</TD></TR><TR><TD class="red">critical</TD><TD>36443</TD><TD>Apache Structs ClassLoader Manipulation Security Bypass Vulnerability</TD><TD>CVE-2014-0113</TD><TD></TD><TD>alert</TD><TD>4.0.0</TD></TR><TR><TD class="red">critical</TD><TD>36444</TD><TD>Microsoft Internet Explorer Memory Corruption Vulnerability</TD><TD>CVE-2014-1776</TD><TD>MS14-021</TD><TD>reset-client</TD><TD><P>4.0.0</P></TD></TR></TBODY></TABLE><P></P><P>I have this update installed:</P><P> show system info :</P><P>treat-version: 434-2198</P><P>threat-release-date: 2014/04/29&nbsp; 12:08:29</P><P></P><P>I'd like to make execptions for 36421 and give for it action block (or reset) but I'm unable to do it. I can't find such id</P><P><IMG alt="2014-05-07_085744.png" class="jive-image" src="https://live.paloaltonetworks.com/legacyfs/online/13267_2014-05-07_085744.png" style="width: 620px; height: 390px;" /></P><P>What I do wrong?</P><P></P><P></P><P></P><P>Regards</P><P>SLawek</P></BODY></HTML> Wed, 07 May 2014 06:59:50 GMT https://live.paloaltonetworks.com/t5/general-topics/threat-version-434-2198-and-new-signatures-problem/m-p/3109#M2324 _slv_ 2014-05-07T06:59:50Z https://live.paloaltonetworks.com/t5/general-topics/threat-version-434-2198-and-new-signatures-problem/m-p/3110#M2325 <HTML><HEAD></HEAD><BODY><P>I 'm unable to select new aplication too:</P><H3>New Applications (3)</H3><TABLE><TBODY><TR><TH width="71">Risk</TH><TH>Name</TH><TH width="12%">Category</TH><TH width="12%">Subcategory</TH><TH width="12%">Technology</TH><TH>Depends On</TH><TH>Previously Identified As</TH><TH>Minimum PAN-OS Version</TH></TR><TR><TD class="orange">4</TD><TD>bittorrent-sync</TD><TD>general-internet</TD><TD>file-sharing</TD><TD>client-server</TD><TD>bittorrent,web-browsing</TD><TD>web-browsing, unknown-udp</TD><TD>3.1.0</TD></TR><TR><TD class="orange">4</TD><TD>openmeetings</TD><TD>collaboration</TD><TD>internet-conferencing</TD><TD>client-server</TD><TD>flash,rtmp,rtmpt,web-browsing,websocket</TD><TD>web-browsing,websocket,flash,rtmp,rtmpt</TD><TD>3.1.0</TD></TR><TR><TD class="green">1</TD><TD>yik-yak</TD><TD>collaboration</TD><TD>social-networking</TD><TD>client-server</TD><TD>apple-maps,google-maps,ssl,web-browsing</TD><TD>web-browsing,ssl</TD><TD><P>3.1.0</P></TD></TR></TBODY></TABLE><P></P><P>Could anyone confirm that this is not only my problem?</P><P></P><P>Regards</P><P>SLawek</P></BODY></HTML> Wed, 07 May 2014 09:22:31 GMT https://live.paloaltonetworks.com/t5/general-topics/threat-version-434-2198-and-new-signatures-problem/m-p/3110#M2325 _slv_ 2014-05-07T09:22:31Z https://live.paloaltonetworks.com/t5/general-topics/threat-version-434-2198-and-new-signatures-problem/m-p/3111#M2326 <HTML><HEAD></HEAD><BODY><P>Hello,</P><P></P><P>Running PA500 (5.0.12) with <SPAN style="color: #000000; font-family: Tahoma, Arial, Helvetica, sans-serif; font-size: 11px; background-color: #fbfcfc;">434-2198</SPAN>.</P><P>Same problem here...</P><P></P><P>Regards,</P><P></P><P>HA</P></BODY></HTML> Wed, 07 May 2014 10:36:40 GMT https://live.paloaltonetworks.com/t5/general-topics/threat-version-434-2198-and-new-signatures-problem/m-p/3111#M2326 licenselu 2014-05-07T10:36:40Z https://live.paloaltonetworks.com/t5/general-topics/threat-version-434-2198-and-new-signatures-problem/m-p/3112#M2327 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>you have installed 434-2198 but the applications come with <STRONG>435-2208 <A href="https://downloads.paloaltonetworks.com/content/content-435-2203.html?__gda__=1400065094_2a36a1f76050deb0da99b924f5b89628" title="https://downloads.paloaltonetworks.com/content/content-435-2203.html?__gda__=1400065094_2a36a1f76050deb0da99b924f5b89628">Version 435 Content Release Notes</A></STRONG></P><P></P><P>Regards,</P><P>Frank</P></BODY></HTML> Wed, 07 May 2014 11:03:49 GMT https://live.paloaltonetworks.com/t5/general-topics/threat-version-434-2198-and-new-signatures-problem/m-p/3112#M2327 FJU-ITCS 2014-05-07T11:03:49Z https://live.paloaltonetworks.com/t5/general-topics/threat-version-434-2198-and-new-signatures-problem/m-p/3113#M2328 <HTML><HEAD></HEAD><BODY><P>oops You are right Frank.</P><P></P><P>But the question is why they sending emails with anounce new version when this version isn't available to download. I checked that is something newer than I had alredy installed bofore I create this topic.</P><P></P><P></P><P>Regards</P><P>Slawek</P></BODY></HTML> Wed, 07 May 2014 11:57:37 GMT https://live.paloaltonetworks.com/t5/general-topics/threat-version-434-2198-and-new-signatures-problem/m-p/3113#M2328 _slv_ 2014-05-07T11:57:37Z https://live.paloaltonetworks.com/t5/general-topics/threat-version-434-2198-and-new-signatures-problem/m-p/3114#M2329 <HTML><HEAD></HEAD><BODY><P>The email i recieved was sent at: Date: Tue, 6 May 2014 16:48:15 -0700</P><P>Have you checked your update scheduler on the PA for these updates?</P></BODY></HTML> Thu, 08 May 2014 08:00:55 GMT https://live.paloaltonetworks.com/t5/general-topics/threat-version-434-2198-and-new-signatures-problem/m-p/3114#M2329 kbe 2014-05-08T08:00:55Z https://live.paloaltonetworks.com/t5/general-topics/threat-version-434-2198-and-new-signatures-problem/m-p/3115#M2330 <HTML><HEAD></HEAD><BODY><P>Of course Yes, I did it by clicking Check Now in Dynamic updates section.</P><P></P><P>Regards</P><P>Slawek</P></BODY></HTML> Thu, 08 May 2014 08:15:54 GMT https://live.paloaltonetworks.com/t5/general-topics/threat-version-434-2198-and-new-signatures-problem/m-p/3115#M2330 _slv_ 2014-05-08T08:15:54Z https://live.paloaltonetworks.com/t5/general-topics/threat-version-434-2198-and-new-signatures-problem/m-p/3116#M2331 <HTML><HEAD></HEAD><BODY><P>Maybe the update server you connected to did not hold the update if you checked short after the release of the notification.</P><P>In wich timezone are you?</P><P>Did you get the update now?</P></BODY></HTML> Thu, 08 May 2014 14:10:47 GMT https://live.paloaltonetworks.com/t5/general-topics/threat-version-434-2198-and-new-signatures-problem/m-p/3116#M2331 kbe 2014-05-08T14:10:47Z https://live.paloaltonetworks.com/t5/general-topics/threat-version-434-2198-and-new-signatures-problem/m-p/3117#M2332 <HTML><HEAD></HEAD><BODY><P>Hi KBE</P><P>it was probably as You wrote</P><P>I'm on CET zone, I got update when I sow Frank response.</P><P></P><P></P><P>Regards</P><P>Slawek</P></BODY></HTML> Thu, 08 May 2014 19:03:48 GMT https://live.paloaltonetworks.com/t5/general-topics/threat-version-434-2198-and-new-signatures-problem/m-p/3117#M2332 _slv_ 2014-05-08T19:03:48Z