Operating System:

[Virtual]

Published:

21 November 2018

Protect yourself against future threats.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

===========================================================================
                         AUSCERT Security Bulletin

                              ASB-2018.0291.2
            Information Disclosure in Expedition Migration Tool
                             21 November 2018

===========================================================================

        AusCERT Security Bulletin Summary
        ---------------------------------

Product:              Palo Alto Expedition
Operating System:     Virtualisation
Impact/Access:        Access Confidential Data -- Remote/Unauthenticated
Resolution:           Patch/Upgrade
CVE Names:            CVE-2018-10142  
Member content until: Friday, December 21 2018
Reference:            https://securityadvisories.paloaltonetworks.com/Home/Detail/135

Revision History:     November 21 2018: Updated product tag
                      November 21 2018: Initial Release

OVERVIEW

        Palo Alto Networks has addressed an information disclosure 
        vulnerability in the Palo Alto Networks Migration Tool ("Expedition").
        
        The vendor has advised the issue affects the following versions:
        - Expedition 1.0.106 and earlier
        
        "This issue does not affect PAN-OS or any other supported product 
        or service." [1]


IMPACT

        The vendor provided the following detail on the vulnerability:
        
        "Successful exploitation of this issue may allow an unauthenticated 
        attacker to enumerate files on the operating system." [1]


MITIGATION

        The following updates are available from the vendor:
        
        - Expedition 1.0.107 and later


REFERENCES

        [1] PAN-SA-2018-0016 Information Disclosure in Expedition Migration
            Tool
            https://securityadvisories.paloaltonetworks.com/Home/Detail/135

AusCERT has made every effort to ensure that the information contained
in this document is accurate.  However, the decision to use the information
described is the responsibility of each user or organisation. The decision to
follow or act on information or advice contained in this security bulletin is
the responsibility of each user or organisation, and should be considered in
accordance with your organisation's site policies and procedures. AusCERT
takes no responsibility for consequences which may arise from following or
acting on information or advice contained in this security bulletin.

===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072

Internet Email: auscert@auscert.org.au
Facsimile:      (07) 3365 7031
Telephone:      (07) 3365 4417 (International: +61 7 3365 4417)
                AusCERT personnel answer during Queensland business hours 
                which are GMT+10:00 (AEST).
                On call after hours for member emergencies only.
===========================================================================
-----BEGIN PGP SIGNATURE-----
Comment: http://www.auscert.org.au/render.html?it=1967
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=Jy4L
-----END PGP SIGNATURE-----