topic OpenSSL TLS Malformed Heartbeat Request Found - Heartbleed(36397) in General Topics https://live.paloaltonetworks.com/t5/general-topics/openssl-tls-malformed-heartbeat-request-found-heartbleed-36397/m-p/8542#M6311 <HTML><HEAD></HEAD><BODY><P>Hello</P><P></P><P>I have a PA-2050 with PanOS 5.0.8 and I get this message today</P><P></P><P>"THREAT,vulnerability,1,2014/08/31 16:32:08,216.75.XX.XX,213.0.XX.XX,216.75.XX.XX,10.1.5.92,Access webprv,,,ssl,vsys1,Untrust,DMZ,ethernet1/3,ethernet1/1.938,ACUNTIA,2014/08/31 16:32:13,207017,1,41570,443,41570,443,0x400000,tcp,<STRONG style="text-decoration: underline;">reset-serve</STRONG>r,"",OpenSSL TLS Malformed Heartbeat Request Found - Heartbleed(<SPAN style="text-decoration: underline;"><STRONG>36397</STRONG></SPAN>),any,medium,client-to-server,40719923,0x0,United States,Spain,0,"</P><P></P><P>I knew that PaloAlto is protected againts HeartBleed <SPAN style="color: #000000; font-family: Arial, sans-serif; font-size: 12px;">36416</SPAN></P><P></P><P><A href="http://researchcenter.paloaltonetworks.com/2014/04/palo-alto-networks-addresses-heartbleed-vulnerability-cve-2014-0160/" title="http://researchcenter.paloaltonetworks.com/2014/04/palo-alto-networks-addresses-heartbleed-vulnerability-cve-2014-0160/">Palo Alto Networks Addresses Heartbleed Vulnerability (CVE-2014-0160) ‹ Palo Alto Networks BlogPalo Alto Networks Blog</A></P><P></P><P>---but against 36397? The PA seems to block the communicaction but i like to confirm there's no problem</P><P></P><P>Best Regards</P><P></P><P>Gonzalo</P></BODY></HTML> Mon, 01 Sep 2014 08:54:28 GMT SOC_CSG 2014-09-01T08:54:28Z OpenSSL TLS Malformed Heartbeat Request Found - Heartbleed(36397) https://live.paloaltonetworks.com/t5/general-topics/openssl-tls-malformed-heartbeat-request-found-heartbleed-36397/m-p/8542#M6311 <HTML><HEAD></HEAD><BODY><P>Hello</P><P></P><P>I have a PA-2050 with PanOS 5.0.8 and I get this message today</P><P></P><P>"THREAT,vulnerability,1,2014/08/31 16:32:08,216.75.XX.XX,213.0.XX.XX,216.75.XX.XX,10.1.5.92,Access webprv,,,ssl,vsys1,Untrust,DMZ,ethernet1/3,ethernet1/1.938,ACUNTIA,2014/08/31 16:32:13,207017,1,41570,443,41570,443,0x400000,tcp,<STRONG style="text-decoration: underline;">reset-serve</STRONG>r,"",OpenSSL TLS Malformed Heartbeat Request Found - Heartbleed(<SPAN style="text-decoration: underline;"><STRONG>36397</STRONG></SPAN>),any,medium,client-to-server,40719923,0x0,United States,Spain,0,"</P><P></P><P>I knew that PaloAlto is protected againts HeartBleed <SPAN style="color: #000000; font-family: Arial, sans-serif; font-size: 12px;">36416</SPAN></P><P></P><P><A href="http://researchcenter.paloaltonetworks.com/2014/04/palo-alto-networks-addresses-heartbleed-vulnerability-cve-2014-0160/" title="http://researchcenter.paloaltonetworks.com/2014/04/palo-alto-networks-addresses-heartbleed-vulnerability-cve-2014-0160/">Palo Alto Networks Addresses Heartbleed Vulnerability (CVE-2014-0160) ‹ Palo Alto Networks BlogPalo Alto Networks Blog</A></P><P></P><P>---but against 36397? The PA seems to block the communicaction but i like to confirm there's no problem</P><P></P><P>Best Regards</P><P></P><P>Gonzalo</P></BODY></HTML> Mon, 01 Sep 2014 08:54:28 GMT https://live.paloaltonetworks.com/t5/general-topics/openssl-tls-malformed-heartbeat-request-found-heartbleed-36397/m-p/8542#M6311 SOC_CSG 2014-09-01T08:54:28Z Re: OpenSSL TLS Malformed Heartbeat Request Found - Heartbleed(36397) https://live.paloaltonetworks.com/t5/general-topics/openssl-tls-malformed-heartbeat-request-found-heartbleed-36397/m-p/8543#M6312 <HTML><HEAD></HEAD><BODY><P>Hello <SPAN style="color: #3b3b3b; font-family: 'Helvetica Neue', Helvetica, Arial, 'Lucida Grande', sans-serif;">Gonzalo,</SPAN></P><P></P><P>PA is having signature for this vulnerability. (<SPAN class="GINGER_SOFTWARE_mark">OpenSSL</SPAN> TLS Malformed Heartbeat Request Found - Heartbleed<SPAN class="GINGER_SOFTWARE_mark">(</SPAN>36397), Hence, you are in a safe hand. <img id="smileyhappy" class="emoticon emoticon-smileyhappy" src="https://live.paloaltonetworks.com/i/smilies/16x16_smiley-happy.png" alt="Smiley Happy" title="Smiley Happy" /></P><P></P><P>FYI:</P><P><IMG alt="Open-SSL.jpg" class="image-0 jive-image" src="https://live.paloaltonetworks.com/legacyfs/online/15233_Open-SSL.jpg" style="height: 103px; width: 620px;" /></P><P></P><P>Thanks</P></BODY></HTML> Mon, 01 Sep 2014 14:11:31 GMT https://live.paloaltonetworks.com/t5/general-topics/openssl-tls-malformed-heartbeat-request-found-heartbleed-36397/m-p/8543#M6312 HULK 2014-09-01T14:11:31Z