05-06-2014 11:59 PM
Hello
We can read in email "Palo Alto Networks Content Updated" that version 435 give us:
| Severity | ID | Attack Name | CVE ID | Vendor ID | Default Action | Minimum PAN-OS Version |
|---|---|---|---|---|---|---|
| low | 36421 | Phishing Webpage Detection | alert | 4.0.0 | ||
| critical | 36442 | Malicious Flash file Detection | alert | 4.0.0 | ||
| critical | 36443 | Apache Structs ClassLoader Manipulation Security Bypass Vulnerability | CVE-2014-0113 | alert | 4.0.0 | |
| critical | 36444 | Microsoft Internet Explorer Memory Corruption Vulnerability | CVE-2014-1776 | MS14-021 | reset-client | 4.0.0 |
I have this update installed:
show system info :
treat-version: 434-2198
threat-release-date: 2014/04/29 12:08:29
I'd like to make execptions for 36421 and give for it action block (or reset) but I'm unable to do it. I can't find such id
What I do wrong?
Regards
SLawek
05-07-2014 04:03 AM
Hi,
you have installed 434-2198 but the applications come with 435-2208 Version 435 Content Release Notes
Regards,
Frank
05-07-2014 02:22 AM
I 'm unable to select new aplication too:
| Risk | Name | Category | Subcategory | Technology | Depends On | Previously Identified As | Minimum PAN-OS Version |
|---|---|---|---|---|---|---|---|
| 4 | bittorrent-sync | general-internet | file-sharing | client-server | bittorrent,web-browsing | web-browsing, unknown-udp | 3.1.0 |
| 4 | openmeetings | collaboration | internet-conferencing | client-server | flash,rtmp,rtmpt,web-browsing,websocket | web-browsing,websocket,flash,rtmp,rtmpt | 3.1.0 |
| 1 | yik-yak | collaboration | social-networking | client-server | apple-maps,google-maps,ssl,web-browsing | web-browsing,ssl | 3.1.0 |
Could anyone confirm that this is not only my problem?
Regards
SLawek
05-07-2014 03:36 AM
Hello,
Running PA500 (5.0.12) with 434-2198.
Same problem here...
Regards,
HA
05-07-2014 04:03 AM
Hi,
you have installed 434-2198 but the applications come with 435-2208 Version 435 Content Release Notes
Regards,
Frank
05-07-2014 04:57 AM
oops You are right Frank.
But the question is why they sending emails with anounce new version when this version isn't available to download. I checked that is something newer than I had alredy installed bofore I create this topic.
Regards
Slawek
05-08-2014 01:00 AM
The email i recieved was sent at: Date: Tue, 6 May 2014 16:48:15 -0700
Have you checked your update scheduler on the PA for these updates?
05-08-2014 01:15 AM
Of course Yes, I did it by clicking Check Now in Dynamic updates section.
Regards
Slawek
05-08-2014 07:10 AM
Maybe the update server you connected to did not hold the update if you checked short after the release of the notification.
In wich timezone are you?
Did you get the update now?
05-08-2014 12:03 PM
Hi KBE
it was probably as You wrote
I'm on CET zone, I got update when I sow Frank response.
Regards
Slawek
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
