This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

CVE-2015-0310

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements

CVE-2015-0310

tac.in
L3 Networker

‎01-27-2015 10:07 PM

 

Model# of the device: PA-5020

Serial# of the device: 0011C103358

Current PANOS version: 5.0.4


Customer requires information that whether CVE-2015-0310 will have an impact on the PANOS version or not and if yes then is there any patch available?

An exploit for CVE-2015-0310 exists in the wild, which is being used in attacks against older versions of Flash Player.

 

 

0 Likes Likes
5 REPLIES 5

HULK
L7 Applicator

‎01-27-2015 10:29 PM

Hello tac.in,


PAN is having coverage for below mentioned threat ID.

TID: 1270152

TID: 1270151

TID: 1270170

We will add IPS signatures with content database version 483, along with coverage for CVE-2015-0311.

Hope this helps.

Thanks

tac.in
L3 Networker

‎01-27-2015 11:11 PM

Hello Hulk

Thanks for the reply.

The threat IDs that you have mentioned, Is it related to the vulnerability CVE-2015-0311?

It would be good if you can provide some more details on the three TID.

0 Likes Likes

HULK
L7 Applicator
In response to tac.in

‎01-27-2015 11:24 PM

Hello Tac.in,

The above mentioned  vulnerability CVE-2015-0310 is related to adobe flash file. Hence, those TID's are for CVE-2015-0310.

Virus/Win32.generic.jqwhx

Signature ID: 1270152

Content Release: 1473 (1/27/2015)

Signature Type: Virus

Virus/Win32.generic.jqwhg

Signature ID: 1270151

Content Release: 1473 (1/27/2015)

Signature Type: Virus

Virus/Win32.generic.jqwfx

Signature ID: 1270170

Content Release: 1473 (1/27/2015)

Signature Type: Virus

Hope this helps.

Thanks

0 Likes Likes

tac.in
L3 Networker

‎01-27-2015 11:50 PM

Thanks I also got the same details from the Threat vault.

0 Likes Likes

pulukas
L7 Applicator
In response to tac.in

‎01-28-2015 03:27 AM

The important concept here is that your protection for threats is based on your Threat database or AV database version NOT the PanOS version.  You check these on the device tab in the dynamic updates option.

And as you saw, the best place to verify coverage is on the Threat vault search for the CVE number.

Steve Puluka BSEET - IP Architect - DQE Communications (Metro Ethernet/ISP)
ACE PanOS 6; ACE PanOS 7; ASE 3.0; PSE 7.0 Foundations & Associate in Platform; Cyber Security; Data Center
0 Likes Likes
  • 2488 Views
  • 5 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!

LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks