Modified Vulnerability Signatures

cancel
Showing results for 
Search instead for 
Did you mean: 

Modified Vulnerability Signatures

L2 Linker

Hello,

 

On the last Threat and Content update on our Firewall, we suddenly started receiving alerts on our Firewall for a specific vulnerability (Threat ID 35427, CVE-2010-0476). Now this is an old CVE and upon checking the MS10-020 article, there was no update from Microsoft, but Palo Alto release notes suggested that this signature was modified.

 

Is a way to find out what change is made to the vulnerability signatures when Palo Alto modified a vulnerability signature?

 

Thanks,

Hamad

1 ACCEPTED SOLUTION

Accepted Solutions

Cyber Elite
Cyber Elite

Hi Hamad

 

If you suspect a threat/vulnerability is being triggered in error, please collect the information as outlined in the article below and open a support case:

 

How to submit an Anti-Virus false positive

How to submit a vulnerability signature false positive

Tom Piens
PANgurus - (co)managed services and consultancy

View solution in original post

4 REPLIES 4

L5 Sessionator

This could be a false positive.

Do you mean that the update on the signature from PA may have an issue?

Yes.

Cyber Elite
Cyber Elite

Hi Hamad

 

If you suspect a threat/vulnerability is being triggered in error, please collect the information as outlined in the article below and open a support case:

 

How to submit an Anti-Virus false positive

How to submit a vulnerability signature false positive

Tom Piens
PANgurus - (co)managed services and consultancy
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!