01-16-2020 01:25 AM
is there any vulnerability protection signature for CVE-2020-0601 (https://www.symantec.com/security-center/vulnerabilities/writeup/111396)?
01-16-2020 03:30 AM
Hi @wahxwah ,
There's no record for it in the Threatvault
I'd recommend reaching out to support.
Cheers !
-Kiwi.
01-17-2020 05:56 AM
Is there a timeline as to when this will be available?
01-17-2020 10:09 AM
My reply from support on it...
Comment: Hi Robert,
I wanted to update you our Content Team is still working on this escalation and I also wanted to share a link that goes over mitigation actions just in case.
https://media.defense.gov/2020/Jan/14/2002234275/-1/-1/0/CSA-WINDOWS-10-CRYPT-LIB-20190114.PDF
https://docs.paloaltonetworks.com/pan-os/8-1/pan-os-admin/decryption/decryption-concepts/no-decrypti...
You can set your firewall to harden the 'Server Certificate Validation' especially 'Block sessions with untrusted issuers' in 'Decryption Profile' per link above.
01-21-2020 08:03 PM
Any update on this? A signature would be fantastic if possible.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
