website statistics
Forefront TMG Malware Inspection False Positive Detection - Yuri Diogenes's Blog - Site Home - TechNet Blogs

Yuri Diogenes's Blog

Thoughts from a Senior Knowledge Engineer @ Microsoft Data Center, Devices & Enterprise Client – CSI (Solutions Group)

Forefront TMG Malware Inspection False Positive Detection

Forefront TMG Malware Inspection False Positive Detection

  • Comments 1
  • Likes

Recently I saw this thread on the TMG Forum and found it very interesting as it was quiet easy to repro. Yesterday Microsoft released a signature update that address this issue. The problem that TMG’s administrators were facing is documented here:

image

From: http://www.microsoft.com/security/portal/Threat/Encyclopedia/Entry.aspx?Name=Exploit%3aJS%2fBlacole.BW

Make sure to go to TMG Update Center and force an update (in case Malware Inspection is not showing as 1.119.1988.0). If it is higher than that you should be fine as shown below:

image

Comments
  • <p>Another good reference about this issue is documented here <a rel="nofollow" target="_new" href="http://isc.sans.edu/diary.html?storyid=12589">isc.sans.edu/diary.html</a></p>

Your comment has been posted.   Close
Thank you, your comment requires moderation so it may take a while to appear.   Close
Leave a Comment