This website uses cookies essential to its operation, for analytics, and for personalized content. By continuing to browse this site, you acknowledge the use of cookies.
For details on cookie usage on our site, read our Privacy Policy
Accept
Reject

Internet Explorer 0 Day - Sept 17, 2012

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Internet Explorer 0 Day - Sept 17, 2012

Go to solution
choff123
L3 Networker

‎09-18-2012 08:53 AM

Is there a signature for the new IE 0 day yet?

There is a metasploit module out so.. that means there a working exploit 'in the wild' to base a sig on...

Normally I find the CVE and then look it up in Threat Vault which will give me the threats version number (eg: 839-1155) that I can confirm is installed on my FW.

However this time, I cant find a CVE number so Im asking here.

Thanks

18 REPLIES 18

Go to solution
mikand
L6 Presenter
In response to ethiSEC

‎09-18-2012 10:36 PM

The update mail arrived 8 hours ago but I still dont see it in the dynamic updates section at https://support.paloaltonetworks.com (when logged in) - only previous versions (328 and older) is currently available.

0 Likes Likes

Go to solution
gafrol
L4 Transporter
In response to PANUser-1234

‎09-18-2012 11:01 PM

Same here, Content update 329 was announced through email, but it's still not available on the support download page nor through the automatic update of the Firewall.

Our customers are waiting since the latest IE vuln. CVE-2012-4969 makes quite some noise in the media.

0 Likes Likes

Go to solution
tkenning
L0 Member

‎09-18-2012 11:15 PM

Hi everybody,

when looking into the dynamic updates section via https://support.paloaltonetworks.com I do not see update 329, yet. 328 is the latest named one.

In Panorama I do not see availability of 329 as well.

The PA's itself have already updated to 329-1511! Looking into the release news (direct link using webGUI):

https://updates.paloaltonetworks.com/updates/ReleaseNotes.aspx?type=si&versionNumber=329-1511&conten...

https://updates.paloaltonetworks.com/updates/ReleaseNotes.aspx?type=si&versionNumber=329-1511&conten...

Default-action 35017: reset-client

Default-action 35018: alert

0 Likes Likes

Go to solution
gafrol
L4 Transporter
In response to tkenning

‎09-18-2012 11:29 PM

That's hard to believe. I just forced an update check by hitting the check now button on the dyn. updates page of the FW. Still showing 328 as the latest one...

Can you send a screenshot ?

0 Likes Likes

Go to solution
tkenning
L0 Member
In response to gafrol

‎09-18-2012 11:42 PM

PA01.png

0 Likes Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!

LEGAL NOTICES
RESOURCES
Copyright 2007 - 2023 - Palo Alto Networks