Operating System:

[Appliance]

Published:

20 April 2016

Protect yourself against future threats.

//Service

Member Security Incident Notifications

Be proactive with your security and receive our daily Member Security Incident Notifications (MSINs) custom to your network.

Read more
Resources > Security Bulletins > ASB-2016.0044 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

===========================================================================
                         AUSCERT Security Bulletin

                               ASB-2016.0044
          A vulnerability has been identified in PAN-OS prior to
                         version 7.1.1 and newer.
                               20 April 2016

===========================================================================

        AusCERT Security Bulletin Summary
        ---------------------------------

Product:              Palo Alto Networks firewalls
Operating System:     PAN-OS
                      Network Appliance
Impact/Access:        Reduced Security -- Remote/Unauthenticated
Resolution:           Patch/Upgrade
Member content until: Friday, May 20 2016

OVERVIEW

        A vulnerability has been identified in PAN-OS prior to version 7.1.1. 
        [1]


IMPACT

        The vendor has provided the following details regarding the issue:
        
        An evasion was identified whereby a user could specially craft an 
        HTTP header to evade URL filtering on Palo Alto Networks firewalls.
        (Ref #93838) [1]


MITIGATION

        The vendor recommends updating to version PAN-OS releases 7.1.1 and
        newer to correct the issue. [1]


REFERENCES

        [1] HTTP Header Evasion (PAN-SA-2016-0006)
            https://securityadvisories.paloaltonetworks.com/Home/Detail/39

AusCERT has made every effort to ensure that the information contained
in this document is accurate.  However, the decision to use the information
described is the responsibility of each user or organisation. The decision to
follow or act on information or advice contained in this security bulletin is
the responsibility of each user or organisation, and should be considered in
accordance with your organisation's site policies and procedures. AusCERT
takes no responsibility for consequences which may arise from following or
acting on information or advice contained in this security bulletin.

===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072

Internet Email: auscert@auscert.org.au
Facsimile:      (07) 3365 7031
Telephone:      (07) 3365 4417 (International: +61 7 3365 4417)
                AusCERT personnel answer during Queensland business hours 
                which are GMT+10:00 (AEST).
                On call after hours for member emergencies only.
===========================================================================
-----BEGIN PGP SIGNATURE-----
Comment: http://www.auscert.org.au/render.html?it=1967
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=rcIx
-----END PGP SIGNATURE-----