ePolicy Orchestrator Sustaining Statement (SSC1710301) - response to CVE-2017-9798 (OptionsBleed)
Last Modified: 2022-03-18 14:14:07 Etc/GMT
Affected Products
Languages:
This article is available in the following languages:
Trellix CEO, Bryan Palma, explains the critical need for security that’s always learning.
As per Gartner, "XDR is an emerging technology that can offer improved threat prevention, detection and response."
Trellix announced the establishment of the Trellix Advanced Research Center to advance global threat intelligence.
Trellix Advanced Research Center analyzes threat data on ransomware, nation-states, sectors, vectors, LotL, MITRE ATT&CK techniques, and emails.
As of May 14, 2024, Knowledge Base (KB) articles will only be published and updated in our new Trellix Thrive Knowledge space.
Log in to the Thrive Portal using your OKTA credentials and start searching the new space. Legacy KB IDs are indexed and you will be able to find them easily just by typing the legacy KB ID.
ePolicy Orchestrator Sustaining Statement (SSC1710301) - response to CVE-2017-9798 (OptionsBleed)
Technical Articles ID:
KB89986
Last Modified: 2022-03-18 14:14:07 Etc/GMT EnvironmentePolicy Orchestrator (ePO) 5.x
Summary
Overview This document addresses concerns about ePO and an Apache vulnerability. This report reflects questions about CVE-2017-9798, and refers to the following Apache Security Advisory. Description Apache httpd allows remote attackers to read secret data from process memory if the Limit directive can be set in a user's Research and Conclusions The engineering team has researched the CVE and the conclusion is that ePO is not vulnerable. The OPTIONS HTTP method is by default disabled in ePO Apache server. Anyone running OPTIONS against ePO Apache sees a 403 Forbidden HTTP response. By default, we do not have any misconfigurations or incorrect settings to the Limit directive in our Apache configuration file, which is one of the root causes of this vulnerability. NOTE: Any future product functionality or releases mentioned in the Knowledge Base are intended to outline our general product direction and should not be relied on, either as a commitment, or when making a purchasing decision. Affected ProductsLanguages:This article is available in the following languages: |
|