Forum Discussion

Kentaro_Fukuma_'s avatar
Kentaro_Fukuma_
Icon for Nimbostratus rankNimbostratus
Jul 27, 2016

Correspondance of CVE-2016-4438/s2-027

Guys,

 

Do you know that ASM signatures supports CVE-2016-4438/S2-037?

 

I didnot confirm that in release notes and in DB(mysql) of ASM.

 

Thanks

 

1 Reply

  • i assume you are wondering if the ASM protects against this vulnerability?

     

    as you already saw yourself there is nothing in the latest attack signature update about this, so i would say no, not at the moment.

     

    i can't find any specific information about it either to be able to determine if creating custom signature is possible. it at all possible you should restrict access to this component from untrusted networks.