Endpoint Protection

 View Only

  • 1.  About this new vulnerability in BIND?

    Posted Aug 03, 2015 01:49 AM

    May I know if Symantec Endpoint Protection already have signature to detect this kind of vulnerability?

    Kindly click the link below. Thanks.

    Critical BIND denial-of-service flaw

     

     



  • 2.  RE: About this new vulnerability in BIND?

    Posted Aug 03, 2015 06:36 AM

    No. The latest NTP update, 7/31/15 r11, does not have this vuln included:

    https://www.symantec.com/security_response/securityupdates/list.jsp?fid=sep

    Nor has security response posted anything about it in their blog:

    https://www-secure.symantec.com/connect/symantec-blogs/security-response



  • 3.  RE: About this new vulnerability in BIND?

    Posted Aug 03, 2015 06:46 AM

    I would suggest you to open a ticket with symantec support and ask them to check if the secuity response team is aware of this and what is the feedback.



  • 4.  RE: About this new vulnerability in BIND?

    Posted Aug 03, 2015 09:12 AM

    Hi, Asked Security Response and got that work is ongoing towards determining the feasibility on our coverage. At this point, we do not have coverage and once deemed feasible, necessary protection will be included. 

    Please follow the SRL blog, once there is any coverage for that, it will be posted:

    https://www-secure.symantec.com/connect/symantec-blogs/security-response

     

    Regards,

     



  • 5.  RE: About this new vulnerability in BIND?
    Best Answer

    Broadcom Employee
    Posted Aug 03, 2015 11:15 AM

    Hi,

    Thank you for posting in Symantec community.
    We are aware of the same and investigating on IPS Coverage feasibiltiy. Once deemed feasible, necessary protection will be included. AV Coverage is deemed non-feasible.

    Implement vendor supplied patches as well to ensure better security.

     



  • 6.  RE: About this new vulnerability in BIND?

    Posted Aug 03, 2015 07:23 PM

    Thanks all for your response.