API tools faq
paste
Advertisement
4viper

Check Point Response to major vulnerabilities

4viper
Sep 6th, 2015
2,075
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 6.99 KB | None | 0 0
raw download clone embed print report
  1. first part: how fast check point patched (OS-patch not IPS signature) the 4 major vulnerabilities of 2014,2015
  2. Heartbleed, Shell Shock , poodle TLS & Venom
  3.  
  4. second part: IPS repsonse times to patch tuesday,drown,in the wild flash 0 days ,badlock
  5. References:
  6.  
  7. Hearbleed
  8. Check Point : https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk100173
  9. Cisco: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140409-heartbleed
  10. Fortinet: http://www.fortiguard.com/advisory/FG-IR-14-011/
  11.  
  12. Shellshock
  13. Check Point : https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk102673
  14. PAN: http://securityadvisories.paloaltonetworks.com/Home/Detail/24
  15. Fortinet: http://www.fortiguard.com/advisory/FG-IR-14-030/
  16.  
  17. Poodle-TLS
  18. Check Point : https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk103683
  19. PAN: http://securityadvisories.paloaltonetworks.com/Home/Detail/28 , https://live.paloaltonetworks.com/thread/12098
  20. Fortinet: http://www.fortiguard.com/advisory/CVE-2014-8730--Poodle-for-TLS--vulnerability/
  21.  
  22. Venom
  23. Check Point : https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk106060
  24. PAN: https://live.paloaltonetworks.com/thread/13419
  25. Fortinet: http://www.fortiguard.com/advisory/FG-IR-15-012/
  26.  
  27.  
  28.  
  29. second part: IPS repsonse times to patch tuesday,drown,in the wild flash 0 days ,badlock
  30.  
  31.  
  32.  
  33. ===ALL TIMES ARE IST (GMT +2 with daylight) ===
  34. Microsoft Patch Tuesday 2016 release dates :
  35. Dec 13-12-16 21:07 PM
  36. Nov 08-11-16 20:15 PM
  37. Oct 11-10-16 20:53 PM
  38. Sep 13-09-16 20:43 PM
  39. Aug 09-08-16 20:15 PM
  40. Jul 12-07-16 20:21 PM
  41. Jun 14-06-16 20:01 PM
  42. May 10-05-16 20:16 PM
  43. Apr 12-04-16 20:16 PM
  44. Mar 08-03-16 20:06 PM
  45. Feb 09-02-16 20:11 PM
  46. Jan 12-01-16 20:26 PM
  47.  
  48. Check Point:
  49. Dec 2016 update package 635168342 13-12-16 21:21 PM ====> 22 minutes
  50. Nov 2016 update package 634167499 08-11-16 20:27 PM ====> 13 minutes
  51. Oct 2016 update package 634166800  11-10-16 20:53 PM ====> 0 minutes
  52. Sep 2016 update package 634166106 13-09-16 20:58 PM ====> 15 minutes
  53. Aug 2016 update package 634165292  09-08-16 20:41 PM ====> 26 minutes
  54. Jul 2016 update package  634164622 12-07-16 20:28 PM ====> 7 minutes
  55. Jun 2016 update package 634163972 14-06-16 20:22 PM ====> 21 minutes
  56. May 2016 update package 634163086 10-05-16 23:35 PM ====> 215 minutes
  57. Apr 2016 update package 634162437  12-04-16 20:30 PM ====> 14 minutes
  58. Mar 2016 update package 634161619 08-03-16 20:27 PM ====> 21 minutes
  59. Feb 2016 update package 634160946 09-02-16 20:20 PM ====> 9 minutes
  60. Jan 2016 update package 634160275 12-01-16 20:48 PM ====> 22 minutes
  61.  
  62. Average for Check Point Patch Tuesday response time (Jan-2016 – Dec 2016 ): 31 minutes
  63.  
  64. Palo Alto
  65. Dec 2016 update package 646 14-12-16 01:31 AM ====> 264 minutes
  66. Nov 2016 update package 632 09-11-16 09:10 AM ====> 783 minutes
  67. Oct 2016 update package 622 12-10-16 22:43 PM ====> 1550 minutes
  68. Sep 2016 update package 612 14-09-16 02:20 AM ====> 337 minutes
  69. Aug 2016 update package 603 10-08-16 00:45 AM ====> 270 minutes
  70. Jul 2016 update package  598 13-07-16 02:26 AM ====> 365 minutes
  71. Jun 2016 update package 588 15-06-16 07:28 AM ====> 687 minutes
  72. May 2016 update package 583 12-05-16 13:10 PM ====> 2454 minutes
  73. Apr 2016 update package 578  13-04-16 05:27 AM ====> 551 minutes
  74. Mar 2016 update package 566 10-03-16 00:03 AM ====> 1677 minutes
  75. Feb 2016 update package 557 10-02-16 05:08 AM ====> 537 minutes
  76. Jan 2016 update package 551 12-01-16 22:30 PM ====> 124 minutes
  77.  
  78.  
  79. Average for PAN Patch Tuesday response time (Jan-2016 – Dec 2016): 800 minutes (13h20m)
  80.  
  81. Cisco (https://www.snort.org/advisories/) :
  82. Dec 2016 talos-rules-2016-12-13 13-12-16 21:39 PM ====> 32 minutes
  83. Nov 2016 talos-rules-2016-11-08 08-11-16 20:22 PM ====> 15 minutes
  84. Oct 2016 talos-rules-2016-10-11   11-10-16 22:13 PM ====> 80 minutes
  85. Sep 2016 talos-rules-2016-09-13 13-09-16 21:14 PM ====> 31 minutes
  86. Aug 2016 talos-rules-2016-08-09  09-08-16 20:24 PM ====> 9 minutes
  87. Jul 2016 talos-rules-2016-07-12 12-07-16 22:56 PM ====> 155 minutes
  88. Jun 2016 talos-rules-2016-06-14 14-06-16 20:10 PM ====> 9 minutes
  89. May 2016 talos-rules-2016-05-10  10-05-16 21:11 PM ====> 55 minutes
  90. Apr 2016 talos-rules-2016-04-12   12-04-16 22:06 PM ====> 110 minutes
  91. Mar 2016 talos-rules-2016-03-08 08-03-16 20:21 PM ====> 15 minutes s
  92. Feb 2016 talos-rules-2016-02-09 09-02-16 21:15 PM ====> 64 minutes
  93. Jan 2016 talos-rules-2016-01-12 12-01-16 21:05 PM ====> 39 minutes
  94.  
  95.  
  96. Average for Cisco Patch Tuesday response time (Jan-2016 – Dec 2016): 98 minutes (1h38m)
  97.  
  98.  
  99. SSL Drown Attack
  100. Check Point : proactively protecting with signature “Secure Sockets Layer Version 2.0” see also sk92447
  101. Palo Alto : Version 567  Thursday, March 10, 2016 at 9:16 PM
  102. Fortinet:  http://fortiguard.com/updates/ips?version=7.802 Thursday, March 3, 2016 at 11:26 PM
  103.  
  104.  
  105.  
  106. Flash (In The Wild) 0days 2016
  107.  
  108. Check Point
  109. CVE-2016-7892  package 635168342 2016-12-13 21:21 PM  95min / 1h35m
  110. CVE-2016-7855 package 634167163 2016-10-27 10:03 AM  769min / 12h49m
  111. CVE-2016-4117  package 634163086 2016-05-10 23:35 PM  695min / 11h35m
  112. CVE-2016-1010  package 634161670 2016-03-10 18:01 PM  361min / 6h01m
  113. CVE-2016-1019  package 634162315 2016-04-06 19:22 PM  442min / 7h22m
  114. CVE-2016-4171  package 634163972 2016-06-15 20:22 PM  502min / 8h22m
  115.  
  116. Average time for Check Point to patch Flash Zero Day  8 Hours
  117.  
  118.  
  119. Palo Alto
  120.  
  121. CVE-2016-7892  Update Package 646 2016-12-14 01:31 AM  345min / 5h45m
  122. CVE-2016-7855 Update Package 628 2016-10-28 19:41 PM  2760min / 1d22h
  123. CVE-2016-4117  Update Package 584 2016-05-18 3:20 AM  11,000 min / 1d15h20m
  124. CVE-2016-1010  Update Package 570 2016-03-17 00:24 AM  9384 min / 6d12h24m
  125. CVE-2016-1019  Update Package 576 2016-04-08 11:44 AM  4304 min / 2d23h44m
  126. CVE-2016-4171  Update Package 589 2016-06-17 00:28 AM  3628 min / 2d12h28m
  127.  
  128. Average time for Palo Alto Networks to patch Flash Zero Day  87.28 Hours
  129.  
  130. Fortinet
  131.  
  132. CVE-2016-7892  package Update 10.028 2016-12-16 1:07:00 AM  3201 min / 2d5h21m
  133. CVE-2016-7855 package Update 08.988 2016-10-27 00:07:00 AM  146 min / 2h26min
  134. CVE-2016-4117  package Update 7.856 2016-05-14 00:42  5802 min / 3d12h42m
  135. CVE-2016-1010  package Update 7.813 2016-03-17 00:37  9397 min / 6d12h37m
  136. CVE-2016-1019  package Update 7.829 2016-04-09 00:44  5804 min / 3d12h44m
  137. CVE-2016-4171  package Update 8.880 2016-06-16 00:42  2202 min / 1d12h42m
  138.  
  139. Average time for Fortinet to patch Flash Zero Day   73 Hours
  140.  
  141.  
  142. BADLOCK
  143.  
  144. Check Point
  145. Apr 2016 update package 634162437  Tue 12-Apr-16 20:14 ====> 11 Min.
  146. Palo Alto:
  147. Apr 2016 update package 578 Wed 4/12/2016 4:55 AM====> 532 Min
  148. Fortinet
  149. Update 7.831 Apr 12th, 2016 - 21:07:14= 64 min
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!