Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- first part: how fast check point patched (OS-patch not IPS signature) the 4 major vulnerabilities of 2014,2015
- Heartbleed, Shell Shock , poodle TLS & Venom
- second part: IPS repsonse times to patch tuesday,drown,in the wild flash 0 days ,badlock
- References:
- Hearbleed
- Check Point : https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk100173
- Cisco: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140409-heartbleed
- Fortinet: http://www.fortiguard.com/advisory/FG-IR-14-011/
- Shellshock
- Check Point : https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk102673
- PAN: http://securityadvisories.paloaltonetworks.com/Home/Detail/24
- Fortinet: http://www.fortiguard.com/advisory/FG-IR-14-030/
- Poodle-TLS
- Check Point : https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk103683
- PAN: http://securityadvisories.paloaltonetworks.com/Home/Detail/28 , https://live.paloaltonetworks.com/thread/12098
- Fortinet: http://www.fortiguard.com/advisory/CVE-2014-8730--Poodle-for-TLS--vulnerability/
- Venom
- Check Point : https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk106060
- PAN: https://live.paloaltonetworks.com/thread/13419
- Fortinet: http://www.fortiguard.com/advisory/FG-IR-15-012/
- second part: IPS repsonse times to patch tuesday,drown,in the wild flash 0 days ,badlock
- ===ALL TIMES ARE IST (GMT +2 with daylight) ===
- Microsoft Patch Tuesday 2016 release dates :
- Dec 13-12-16 21:07 PM
- Nov 08-11-16 20:15 PM
- Oct 11-10-16 20:53 PM
- Sep 13-09-16 20:43 PM
- Aug 09-08-16 20:15 PM
- Jul 12-07-16 20:21 PM
- Jun 14-06-16 20:01 PM
- May 10-05-16 20:16 PM
- Apr 12-04-16 20:16 PM
- Mar 08-03-16 20:06 PM
- Feb 09-02-16 20:11 PM
- Jan 12-01-16 20:26 PM
- Check Point:
- Dec 2016 update package 635168342 13-12-16 21:21 PM ====> 22 minutes
- Nov 2016 update package 634167499 08-11-16 20:27 PM ====> 13 minutes
- Oct 2016 update package 634166800 11-10-16 20:53 PM ====> 0 minutes
- Sep 2016 update package 634166106 13-09-16 20:58 PM ====> 15 minutes
- Aug 2016 update package 634165292 09-08-16 20:41 PM ====> 26 minutes
- Jul 2016 update package 634164622 12-07-16 20:28 PM ====> 7 minutes
- Jun 2016 update package 634163972 14-06-16 20:22 PM ====> 21 minutes
- May 2016 update package 634163086 10-05-16 23:35 PM ====> 215 minutes
- Apr 2016 update package 634162437 12-04-16 20:30 PM ====> 14 minutes
- Mar 2016 update package 634161619 08-03-16 20:27 PM ====> 21 minutes
- Feb 2016 update package 634160946 09-02-16 20:20 PM ====> 9 minutes
- Jan 2016 update package 634160275 12-01-16 20:48 PM ====> 22 minutes
- Average for Check Point Patch Tuesday response time (Jan-2016 – Dec 2016 ): 31 minutes
- Palo Alto
- Dec 2016 update package 646 14-12-16 01:31 AM ====> 264 minutes
- Nov 2016 update package 632 09-11-16 09:10 AM ====> 783 minutes
- Oct 2016 update package 622 12-10-16 22:43 PM ====> 1550 minutes
- Sep 2016 update package 612 14-09-16 02:20 AM ====> 337 minutes
- Aug 2016 update package 603 10-08-16 00:45 AM ====> 270 minutes
- Jul 2016 update package 598 13-07-16 02:26 AM ====> 365 minutes
- Jun 2016 update package 588 15-06-16 07:28 AM ====> 687 minutes
- May 2016 update package 583 12-05-16 13:10 PM ====> 2454 minutes
- Apr 2016 update package 578 13-04-16 05:27 AM ====> 551 minutes
- Mar 2016 update package 566 10-03-16 00:03 AM ====> 1677 minutes
- Feb 2016 update package 557 10-02-16 05:08 AM ====> 537 minutes
- Jan 2016 update package 551 12-01-16 22:30 PM ====> 124 minutes
- Average for PAN Patch Tuesday response time (Jan-2016 – Dec 2016): 800 minutes (13h20m)
- Cisco (https://www.snort.org/advisories/) :
- Dec 2016 talos-rules-2016-12-13 13-12-16 21:39 PM ====> 32 minutes
- Nov 2016 talos-rules-2016-11-08 08-11-16 20:22 PM ====> 15 minutes
- Oct 2016 talos-rules-2016-10-11 11-10-16 22:13 PM ====> 80 minutes
- Sep 2016 talos-rules-2016-09-13 13-09-16 21:14 PM ====> 31 minutes
- Aug 2016 talos-rules-2016-08-09 09-08-16 20:24 PM ====> 9 minutes
- Jul 2016 talos-rules-2016-07-12 12-07-16 22:56 PM ====> 155 minutes
- Jun 2016 talos-rules-2016-06-14 14-06-16 20:10 PM ====> 9 minutes
- May 2016 talos-rules-2016-05-10 10-05-16 21:11 PM ====> 55 minutes
- Apr 2016 talos-rules-2016-04-12 12-04-16 22:06 PM ====> 110 minutes
- Mar 2016 talos-rules-2016-03-08 08-03-16 20:21 PM ====> 15 minutes s
- Feb 2016 talos-rules-2016-02-09 09-02-16 21:15 PM ====> 64 minutes
- Jan 2016 talos-rules-2016-01-12 12-01-16 21:05 PM ====> 39 minutes
- Average for Cisco Patch Tuesday response time (Jan-2016 – Dec 2016): 98 minutes (1h38m)
- SSL Drown Attack
- Check Point : proactively protecting with signature “Secure Sockets Layer Version 2.0” see also sk92447
- Palo Alto : Version 567 Thursday, March 10, 2016 at 9:16 PM
- Fortinet: http://fortiguard.com/updates/ips?version=7.802 Thursday, March 3, 2016 at 11:26 PM
- Flash (In The Wild) 0days 2016
- Check Point
- CVE-2016-7892 package 635168342 2016-12-13 21:21 PM 95min / 1h35m
- CVE-2016-7855 package 634167163 2016-10-27 10:03 AM 769min / 12h49m
- CVE-2016-4117 package 634163086 2016-05-10 23:35 PM 695min / 11h35m
- CVE-2016-1010 package 634161670 2016-03-10 18:01 PM 361min / 6h01m
- CVE-2016-1019 package 634162315 2016-04-06 19:22 PM 442min / 7h22m
- CVE-2016-4171 package 634163972 2016-06-15 20:22 PM 502min / 8h22m
- Average time for Check Point to patch Flash Zero Day 8 Hours
- Palo Alto
- CVE-2016-7892 Update Package 646 2016-12-14 01:31 AM 345min / 5h45m
- CVE-2016-7855 Update Package 628 2016-10-28 19:41 PM 2760min / 1d22h
- CVE-2016-4117 Update Package 584 2016-05-18 3:20 AM 11,000 min / 1d15h20m
- CVE-2016-1010 Update Package 570 2016-03-17 00:24 AM 9384 min / 6d12h24m
- CVE-2016-1019 Update Package 576 2016-04-08 11:44 AM 4304 min / 2d23h44m
- CVE-2016-4171 Update Package 589 2016-06-17 00:28 AM 3628 min / 2d12h28m
- Average time for Palo Alto Networks to patch Flash Zero Day 87.28 Hours
- Fortinet
- CVE-2016-7892 package Update 10.028 2016-12-16 1:07:00 AM 3201 min / 2d5h21m
- CVE-2016-7855 package Update 08.988 2016-10-27 00:07:00 AM 146 min / 2h26min
- CVE-2016-4117 package Update 7.856 2016-05-14 00:42 5802 min / 3d12h42m
- CVE-2016-1010 package Update 7.813 2016-03-17 00:37 9397 min / 6d12h37m
- CVE-2016-1019 package Update 7.829 2016-04-09 00:44 5804 min / 3d12h44m
- CVE-2016-4171 package Update 8.880 2016-06-16 00:42 2202 min / 1d12h42m
- Average time for Fortinet to patch Flash Zero Day 73 Hours
- BADLOCK
- Check Point
- Apr 2016 update package 634162437 Tue 12-Apr-16 20:14 ====> 11 Min.
- Palo Alto:
- Apr 2016 update package 578 Wed 4/12/2016 4:55 AM====> 532 Min
- Fortinet
- Update 7.831 Apr 12th, 2016 - 21:07:14= 64 min
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement