Threat Report: Exposing Malware in Linux-Based Multi-Cloud Environments | Download Now

Carbon Black Signature Status displayed as HTML content

Carbon Black Signature Status displayed as HTML content

Version
This solution applies to versions earlier than v5.1.


Issue

When expanding an event's details, such as a modload event, from the Process Analysis page, the "Signature Status" field is displayed as HTML content.

 

Symptoms

For example one would expect "Signed" or "Unsigned", meanwhile the field displays HTML content similar to:

<span class='signature-signed'>Signed</span>....


Solution

As a temporary workaround, one can search for the event by MD5 to view the Signature Status of the file that way. This is a defect that is resolved in v5.1. Defect number CBUI-1322 refers to this.

Labels (1)
Was this article helpful? Yes No
No ratings
Article Information
Author:
Creation Date:
‎05-08-2015
Views:
444
Contributors