This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

Enhanced Security Measures in Place:   To ensure a safer experience, we’ve implemented additional, temporary security measures for all users.

OpenSSL Heartbleed bug: CVE-2014-0160

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements

OpenSSL Heartbleed bug: CVE-2014-0160

AdamBatey
L1 Bithead

‎04-07-2014 10:35 PM

Hi,

Just wondering if any Palo Alto versions are affected by this bug in OpenSSL?

http://heartbleed.com/

Regards

64 REPLIES 64

SCCDavek
L0 Member
In response to Dpeters1

‎04-10-2014 06:27 AM 

davido140 wrote:




Just used heartbleed in the threat name on the rule in the Vuln' protection profile and set the action to block




This forces traffic to be dropped for the "medium" severity threats related to heartbleed in the 430 update.




Effect from one of the online tests will be a timeout and you'll get an event in the threat log.




The target system MUST be vulnerable to trigger these signatures, if you've already patched it you wont see anything in the logs.

Ah, so you made a custom Vulnerability Protection profile then applied that to your security policies. . That makes sense. Thank you!

0 Likes Likes

Dpeters1
L2 Linker
In response to infotech

‎04-10-2014 06:34 AM

I've had problems installing on some 2020 appliances, (3020's have been fine)..

I've put it down to crappy management plane resources.

try from the cli...

request content check


then

request content upgrade download latest

then

request content upgrade install latest

show jobs id xxxx to see the progress of any of these.

Seemed to work for me..

0 Likes Likes

Dpeters1
L2 Linker
In response to SCCDavek

‎04-10-2014 06:35 AM

no probs

Should mention, if you have medium severity threats set to alert in the profile, make sure that the rule for heartbleed is above this! you can shuffle the ordering around in the vuln' protection profile.

0 Likes Likes

infotech
L4 Transporter
In response to rgreens

‎04-10-2014 06:40 AM

I don't understand how this test works. I put my information in and then it just read G0!Go!

0 Likes Likes

Register_Security
L3 Networker
In response to Dpeters1

‎04-21-2014 03:54 AM

Are there any screenshort for heartbleed attack into system ?

Please share ?

0 Likes Likes
  • 28532 Views
  • 64 replies
  • 5 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!

LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks