We are trying to contact Sitefinity to check status about the latest security vulnerability in Sitefinity due to cryptographic weakness [CVE-2017-9248]. As our version is older, we have to verify the steps we have taken is valid and is that enough for the security issue.
Our Sitefinity version is 3.7.2136
and what we did is, we prevented the access to Dialog Handler as suggested in http://www.telerik.com/support/kb/aspnet-ajax/details/cryptographic-weakness#prevent-access
by removing the handler in the web.config file and also changed Machine keys.
Can you please let us know if that will be enough for now? Is there a way to measure this and make sure that security is improved?