Which version of Malware Analysis Appliance addresses CVE-2015-2808?

book

Article ID: 168933

calendar_today

Updated On:

Products

Malware Analysis Software - MA

Issue/Introduction

Symantec Malware Analysis Appliance versions prior to MAA 4.2.8 allow the use of the RC4 algorithm, thus susceptible to CVE-2015-2808. See https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-2808 for more details.

Resolution

Upgrade to MAA 4.2.8 or newer as they no longer support the RC4 algorithm and will address CVE-2015-2808.