When we view the settings in the UI, they look like this. Below is an excerpt from the user guide, emphasis mine:Īdditionally, here is an excerpt from the referenced “Automatically Installing Agents” portion of the doc: One of the features of this software is that it can detect unmanaged systems and automatically deploy agents to them. This issue is unrelated to it’s ability to detect malware, but rather how it can deploy agents. It protects computers from malware and performs other actions such as web filtering. VIPRE Endpoint Security is a typical Antivirus/Endpoint Protection software. This issue is very similar and is probably best described as a forced authentication attack. ![]() ![]() A few years ago, I published a blog post titled The Dangers of Client Probing on Palo Alto Firewalls, which detailed how client probing feature on Palo Alto firewalls can leak service account password hashes. This post documents a security mis-configuation I observed in VIPRE Endpoint Security with Endpoint Discovery.
0 Comments
Leave a Reply. |