About mario.chancay

Hi, we have received notifications for the following vulnerabilities and related CVE's:   Multiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution Out of bounds write in QUIC (CVE-2017-15407) Heap buffer overflow in PDFium (CVE-2017-15408) Out of bounds write in Skia (CVE-2017-15409) Use after free in PDFium (CVE-2017-15410, CVE-2017-15411) Use after free in libXML (CVE-2017-15412) Type confusion in WebAssembly (CVE-2017-15413) Pointer information disclosure in IPC call (CVE-2017-15415) Out of bounds read in Blink (CVE-2017-15416) Cross origin information disclosure in Skia (CVE-2017-15417) Use of uninitialized value in Skia (CVE-2017-15418) Cross origin leak of redirect URL in Blink (CVE-2017-15419) URL spoofing in Omnibox (CVE-2017-15420) Integer overflow in ICU (CVE-2017-15422) Issue with SPAKE implementation in BoringSSL (CVE-2017-15423) URL Spoof in Omnibox (CVE-2017-15424, CVE-2017-15425, CVE-2017-15426) Insufficient blocking of JavaScript in Omnibox (CVE-2017-15427) Multiple Vulnerabilities in Apache Struts Could Allow for Remote Code Execution A denial of service vulnerability exists due to an outdated JSON-lib library utilized by a REST plugin. (CVE-2017-15707) A remote code execution vulnerability exists because the REST Plugin utilizes Jackson JSON library for data binding. (CVE-2017-7525)   But could not find the CVE's in the Threat Vault.  Would like to understand how PaloAlto determines which CVE's should be included in the Threat Updates.   Regards   Mario ... View more

Hi, I have configured SSL decryption and data filtering to detect Credit Card and also the pattern "Confidencial". I have created a word and pdf document with 10 credit card numbers. In order to test the decryption and data filtering, I am doing the following tests: - Send the pdf file using gmail and office365. - Send the word file using gmail and office365 - Send the credit card numbers as a text inside a mail using gmail and office365 These are the issues that I have found: -  Credit card pattern is no detected when sent by gmail. - Credit card pattern is only recognized when sent by office365. - No packet capture is performed. I have also downloaded the credit card test file at the palo alto's live community. This credit cards are recognized properly when downloaded directly from the web site.   Has anybody experienced this issues ?   Regards ... View more

Hi, I have the following question related to log management:   why PAN-70X0 can't send event logs to Panorama ? are the event logs stored in compressed format ? If so, what is the compression ratio ?   Regards   Mario ... View more

Hi, will appreciate the comments of the PAN community about the efectivenes of the DOS protection features of Palo Alto.  Are there DOS attacks that can't be mitigated by Palo Alto ? Thks Mario ... View more

Hi, will like to understand the oppinion from the PAN community about the features that are still missing or needs to be improved. Will appreciate if you can specify by functionality like : FIREWALL Must Have : A,B,C Nice to Have : D,E,F Thks Mario ... View more

Hi, we have a customer that needs to have more visibility about the traffic in their network (applications, ports, bandwidth, vulnerabilities and virus) and will like to use PAN instead of activating NetFlow at the switch level. This will imply that each access switch in each floor will have a span port that will mirror traffic to a tap port in PAN.  Will like to understand if somebody has a previous experience with Netflow and has switched to PAN for this functionality.  Will also like to understand if PAN will have any limitations compared to NetFlow. Thks Mario ... View more

Hi, will like to understand what other users can mention about their experience with the detection capabilities for Botnet, Virus and Vulnerabilities. We started to use a PA-500 with PAN-OS 4.0.1 with latest App,Virus and URL updates in Tap Mode but don't seem to be detecting too much. Actually, the Botnet report included to many false positves (internal servers) and we haven't been able to detect new viruses after migration to PAN-OS 4.1 with the latest signatures. Is there any specific tunning that needs to be done ?. Thks Mario ... View more