This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

"'HeapSpray' Exploit prevented in Firefox" while working on Synology

Hi. While trying to work on the Synology, whenever I try to open a Docker-Container, the site crashes with Sophos claiming to have prevented the exploit 'HeapSpray'.

 

Not only is this annoying it's also not even dangerous and only potentially a sign of a vulnerability. (As detailed here: https://secure2.sophos.com/de-de/medialibrary/PDFs/other/Comprehensive-Exploit-Prevention.ashx)

 

So anyways, I tried to disable the detection of this but I cannot find where I would do that.

I whitelisted the IP under Scanning exclusions (https://cloud.sophos.com/manage/config/settings/scanning-exclusions), tried to whitelist the exploit, but it doesn't even get listed. Finally I resorted to whitelist Firefox under the Exploit-Mitigation Exclusions (https://cloud.sophos.com/manage/config/settings/exploit-mitigation-exclusions). Though naturally I don't want to disable all exploits for FF, just this single one.

Where do I have to go?



This thread was automatically locked due to age.
Parents Reply Children
No Data