topic Re: CVE-2013-3893 in General Topics

CVE-2013-3893

dill — Wed, 18 Sep 2013 19:56:59 GMT

What is the Vulnerability Signature status?

Microsoft Security Advisory (2887505)

Vulnerability in Internet Explorer Could Allow Remote Code Execution

Published: Tuesday, September 17, 2013

https://technet.microsoft.com/en-us/security/advisory/2887505

Re: CVE-2013-3893

torm — Wed, 18 Sep 2013 21:01:10 GMT

That's strange, it's still not there for me. I'll check again tomorrow. Thanks!

Re: CVE-2013-3893

sraghunandan — Thu, 19 Sep 2013 00:41:39 GMT

Content 394-1961 has been released which will address this CVE.

Please refresh your "dynamic Updates" on the PAN firewall to get it.

Re: CVE-2013-3893

sraghunandan — Thu, 19 Sep 2013 00:41:58 GMT

Matt can you check now its available.

Re: CVE-2013-3893

dill — Thu, 19 Sep 2013 13:29:38 GMT

Application & Threat update 394-1961 was released last night.

It contained signature 36128 for CVE-2013-3893 (Microsoft Internet Explorer Use After Free Vulnerability).

All set. Thanks.

Re: CVE-2013-3893

SPowell — Thu, 19 Sep 2013 19:21:58 GMT

I installed the update this morning, but when I look for the signature 36128 in Objects/Vulnerability Protection my active profile, it does not appear in the vulnerability list even with show all signatures checked.. Am I missing something?

Re: CVE-2013-3893

gchandrasekaran — Thu, 19 Sep 2013 19:37:51 GMT

After installing content 394-1961, it took sometime (around 7-10 mins) for me to see the TID 36128 and CVE-2013-3893. I request you to wait for sometime and then check whether your able to see the TID in the vulnerability protection profile. Also, run the CLI command "> show system info" to ensure that the threat-version 394-1961 is installed.