Is there a signature for the new IE 0 day yet?
There is a metasploit module out so.. that means there a working exploit 'in the wild' to base a sig on...
Normally I find the CVE and then look it up in Threat Vault which will give me the threats version number (eg: 839-1155) that I can confirm is installed on my FW.
However this time, I cant find a CVE number so Im asking here.
when looking into the dynamic updates section via https://support.paloaltonetworks.com I do not see update 329, yet. 328 is the latest named one.
In Panorama I do not see availability of 329 as well.
The PA's itself have already updated to 329-1511! Looking into the release news (direct link using webGUI):
Default-action 35017: reset-client
Default-action 35018: alert
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!