- Access exclusive content
- Connect with peers
- Share your expertise
- Find support resources
07-03-2016 01:34 AM - edited 07-03-2016 01:34 AM
Hello,
On the last Threat and Content update on our Firewall, we suddenly started receiving alerts on our Firewall for a specific vulnerability (Threat ID 35427, CVE-2010-0476). Now this is an old CVE and upon checking the MS10-020 article, there was no update from Microsoft, but Palo Alto release notes suggested that this signature was modified.
Is a way to find out what change is made to the vulnerability signatures when Palo Alto modified a vulnerability signature?
Thanks,
Hamad
07-04-2016 04:07 AM
Hi Hamad
If you suspect a threat/vulnerability is being triggered in error, please collect the information as outlined in the article below and open a support case:
How to submit an Anti-Virus false positive
How to submit a vulnerability signature false positive
07-03-2016 01:57 AM
This could be a false positive.
07-03-2016 02:04 AM
Do you mean that the update on the signature from PA may have an issue?
07-04-2016 04:07 AM
Hi Hamad
If you suspect a threat/vulnerability is being triggered in error, please collect the information as outlined in the article below and open a support case:
How to submit an Anti-Virus false positive
How to submit a vulnerability signature false positive
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!