After enabling IPS on my Fortigate 100D it detected an attack by
OpenSSL.ChangeCipherSpec.Injection on an iPhone when trying to browse a
remote Yahoo site. The default action in the 'Default' IPS policy that I
am using has 'Monitor All' set, so it's ...
gschmitt wrote:emnoc wrote:You need to look at CVE-2014-0224 and
determine your risk and rather to block or monitor. I believe you can
search on fortiguard website for list of CVEs also. In a nutshell you
need to determine if it's a positive and upda...
I was starting to think the same thing actually. The iPhone in question
is completely up to date with iOS 9.1 so there really isn't any newer
updates to apply that would pertain to this. This may be why the default
action for this exploit is to simpl...
