Reply
Highlighted
L3 Networker

CVE-2015-0310

 

Model# of the device: PA-5020

Serial# of the device: 0011C103358

Current PANOS version: 5.0.4


Customer requires information that whether CVE-2015-0310 will have an impact on the PANOS version or not and if yes then is there any patch available?

An exploit for CVE-2015-0310 exists in the wild, which is being used in attacks against older versions of Flash Player.

 

 

Highlighted
L7 Applicator

Re: CVE-2015-0310

Hello tac.in,


PAN is having coverage for below mentioned threat ID.

TID: 1270152

TID: 1270151

TID: 1270170

We will add IPS signatures with content database version 483, along with coverage for CVE-2015-0311.

Hope this helps.

Thanks

Highlighted
L3 Networker

Re: CVE-2015-0310

Hello Hulk

Thanks for the reply.

The threat IDs that you have mentioned, Is it related to the vulnerability CVE-2015-0311?

It would be good if you can provide some more details on the three TID.

Highlighted
L7 Applicator

Re: CVE-2015-0310

Hello Tac.in,

The above mentioned  vulnerability CVE-2015-0310 is related to adobe flash file. Hence, those TID's are for CVE-2015-0310.

Virus/Win32.generic.jqwhx

Signature ID: 1270152

Content Release: 1473 (1/27/2015)

Signature Type: Virus

Virus/Win32.generic.jqwhg

Signature ID: 1270151

Content Release: 1473 (1/27/2015)

Signature Type: Virus

Virus/Win32.generic.jqwfx

Signature ID: 1270170

Content Release: 1473 (1/27/2015)

Signature Type: Virus

Hope this helps.

Thanks

Highlighted
L3 Networker

Re: CVE-2015-0310

Thanks I also got the same details from the Threat vault.

Highlighted
L7 Applicator

Re: CVE-2015-0310

The important concept here is that your protection for threats is based on your Threat database or AV database version NOT the PanOS version.  You check these on the device tab in the dynamic updates option.

And as you saw, the best place to verify coverage is on the Threat vault search for the CVE number.

Steve Puluka BSEET - IP Architect - DQE Communications (Metro Ethernet/ISP)
ACE PanOS 6; ACE PanOS 7; ASE 3.0; PSE 7.0 Foundations & Associate in Platform; Cyber Security; Data Center
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!

The Live Community thanks you for your participation!