@bvandivier wrote: Please also note that these are vulnerabilities which require local code execution therefore coverage in the form of IPS (vulnerability protection) signatures are not germane to these particular vulnerabilities as these are not network-borne attacks. I believe PA's response is accurate for packet level devices, but what about products like an On-Premise Wildfire sandbox. I assume Wildfire is some form of a hypervisor product that is intentionally executing files on intentionally flawed OSes. Is this not "local code execution"? Are there any specific statements for the Wildfire product?
... View more