Palo Alto Networks Security Advisory - April 9, 2019

Started by icecream-guy, April 10, 2019, 08:09:22 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions

icecream-guy

April 10, 2019, 08:09:22 AM
Palo Alto Networks has published a Security Advisory https://securityadvisories.paloaltonetworks.com/.

PAN-SA-2019-0008– Information Disclosure in GlobalProtect Agent
•   Severity = High
•   Fixed in GlobalProtect Agent 4.1.1 for Windows and GlobalProtect Agent 4.1.11 for macOS
•   Affected Versions: GlobalProtect Agent 4.1.0 for Windows and GlobalProtect Agent 4.1.10 for macOS
•   CVE-2019-1573

 
Details of the issues, affected versions, and any mitigation information can be found in the Security Advisories.


Please visit our Security Advisories website to learn more at https://securityadvisories.paloaltonetworks.com/


If you have questions, please contact support https://www.paloaltonetworks.com/company/contact-support

.

Regards
,
Product Security Incident Response Team

Palo Alto Networks
:professorcat:

My Moral Fibers have been cut.

deanwebb

#1
April 10, 2019, 09:02:17 AM
Good to know, especially if one uses GlobalProtect...
Take a baseball bat and trash all the routers, shout out "IT'S A NETWORK PROBLEM NOW, SUCKERS!" and then peel out of the parking lot in your Ferrari.
"The world could perish if people only worked on things that were easy to handle." -- Vladimir Savchenko
Вопросы есть? Вопросов нет! | BCEB: Belkin Certified Expert Baffler | "Plan B is Plan A with an element of panic." -- John Clarke
Accounting is architecture, remember that!
Air gaps are high-latency Internet connections.

icecream-guy

#2
April 15, 2019, 07:12:31 AM
now includes a few other vendors

https://www.kb.cert.org/vuls/id/192371/

-  Pulse Secure Connect Secure prior to 8.1R14, 8.2, 8.3R6, and 9.0R2
- Cisco AnyConnect 4.7.x and prior
- F5 fixed it in version 12.1.3 and 13.1.0 and onwards
:professorcat:

My Moral Fibers have been cut.
Print
Go Up Pages1
User actions