Situation A critical vulnerability has been found on Cisco, F5 Networks, Palo Alto Networks and Pulse Secure VPN applications. Problem A vulnerability, CVE-2019-1573 was found. This vulnerability is caused by the VPN application storing the authentication and/or session cookies insecurely in memory and/or log files. Implication A successful exploit could allow the attacker to replay the session and bypass other authentication methods. The attacker would then have access to the same applications that… Read More
Security Advisory: Critical Vulnerability Found in Cisco Wireless VPN and Firewall Routers
Situation A critical vulnerability has been found in Cisco’s wireless VPN and firewall routers Problem The vulnerability, CVE-2019-1663, is an improper validation error found in Cisco’s RV110W Wireless-N VPN Firewall, Cisco’s RV130W Wireless-N Multifunction VPN Router, and Cisco’s RV215W Wireless-N VPN Router. The vulnerability allows an attacker with any browser to execute code of their choice via the web interface. Implication A successful exploit could allow the attacker to execute… Read More
Security Advisory: Critical Vulnerabilities Found in Kubernetes & Abobe Flash
1 of 2: Vulnerability uncovered in Kubernetes open-source container softwareSituationA critical privilege-escalation vulnerability (CVE-2018-1002105) has been uncovered in the Kubernetes open-source container software.ProblemA hacker can send specially crafted requests to establish a connection through the Kubernetes API server. Once that connection is established, there’s no check on the ability to send arbitrary requests directly to those backends because the requests will be automatically authenticated with the Kubernetes API server’s TLS… Read More
Security Advisory: Critical Vulnerability Found in Zoom Meetings Platform
Situation A critical vulnerability was found in the Zoom meetings platform that affected all Zoom products. Problem The vulnerability could allow a malicious user to control Zoom meeting functions and, if a user was sharing their desktop, take control of the mouse and keyboard. Implication If a malicious user were to take control of the desktop mouse and keyboard, they would have full access of the system. Need Zoom has… Read More
Security Advisory: Critical Vulnerability Found in Xorg X.Server Package
Situation A critical vulnerability was found in the Xorg X.Server package that is used on most major Linux operating systems. Problem The X.Server program does not properly handle and validate arguments for two command line options -modulepath and -logfile. Implication This allows an unprivileged user who has access to the system to elevate their permissions and then execute malicious code or overwrite any file on the system. Need Xorg and… Read More
Security Advisory: Cisco Umbrella Enterprise Roaming Client Privilege Escalation Vulnerability
Situation Two high-severity vulnerabilities were found within the Cisco Umbrella platform. Problem Within the Cisco umbrella platform, the Umbrella Roaming Client runs as System on startup and consumes several files within a directory. It has been discovered that local users had the ability to write data to this directory. As a result, malicious files could be placed within the directory and ran to create or elevate user permissions. Implication An… Read More
Security Advisory: AZORult Trojan Malware Updated with Hermes Ransomware
Situation AZORult is a trojan malware designed to extract data from the attacked system. Data can include passwords, cookies, files, wallet.dat data and more. Problem In July 2018, AZORult was substantially updated with Hermes ransomware. The update includes the ability to steal from non-Microsoft browsers, an improved loader, ability to use system proxies, and added support for cryptocurrency wallets. Implication The new version was seen in a large email campaign on July… Read More
- « Previous Page
- 1
- …
- 17
- 18
- 19