07-07-2021 05:49 PM
Hi All,
CVE-2004-0230 does not seem to show up in the Palo Alto Networks threat database, but the below KB article seems to indicate that PAN have introduced threat mitigation for this CVE in PAN-OS 6.0.
https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000CllyCAC
I am wondering if this is an error in the PA threat database? or if mitigation for this threat has been removed from the PAN OS (which I believe unlikely)?
Can anyone shed any light on this issue?
Thanks in advance.
07-09-2021 06:48 AM
I believe the mitigation that the article is talking about was actually PAN fixing the vulnerability within PAN-OS itself and not in direct relation to a threat signature being added to identify the traffic. Just as an FYI though, threat signatures are retired and they don't just stick around forever.
07-09-2021 06:48 AM
I believe the mitigation that the article is talking about was actually PAN fixing the vulnerability within PAN-OS itself and not in direct relation to a threat signature being added to identify the traffic. Just as an FYI though, threat signatures are retired and they don't just stick around forever.
07-11-2021 04:29 PM
@BPry OK thanks for that info. A few questions:
So protection from this threat is built into the PAN OS and no need to configure an action within a Vulnerability profile then?
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
