Hello,
Is there any extraDAT or Expert rule available to protect against CVE-2020-0796 ?
Thanks.
Solved! Go to Solution.
Hello @jmcg
The coverage for CVE-2020-0796 vulnerability became available in latest content release, Signature 6157: SMB v3 Remote Code Execution Vulnerability:
*** McAfee Exploit Prevention Content 10050
https://www.mcafee.com/enterprise/en-us/assets/release-notes/exploit-prevention/mep-03-31-2020.pdf
Please make sure to evaluate the guidelines marked as "IMPORTANT" in this release note before you proceed with deployment.
Also KB92502, mentioned by @ktankink has been updated with this information.
Best regards.
Hi @jmcg Please monitor the KB article below for more information.
KB92502 - McAfee response to Microsoft Server Message Block SMBv3 RCE vulnerability (CVE-2020-0796)
https://kc.mcafee.com/corporate/index?page=content&id=KB92502
Hello @jmcg
The coverage for CVE-2020-0796 vulnerability became available in latest content release, Signature 6157: SMB v3 Remote Code Execution Vulnerability:
*** McAfee Exploit Prevention Content 10050
https://www.mcafee.com/enterprise/en-us/assets/release-notes/exploit-prevention/mep-03-31-2020.pdf
Please make sure to evaluate the guidelines marked as "IMPORTANT" in this release note before you proceed with deployment.
Also KB92502, mentioned by @ktankink has been updated with this information.
Best regards.
New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.
Thousands of customers use our Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership: