Articles about vulnerability

Here we go again

Every major OS maker misread Intel's docs. Now their kernels can be hijacked or crashed

Updated Linux, Windows, macOS, FreeBSD, and some implementations of Xen have a design flaw that could allow attackers to, at best, crash Intel and AMD-powered computers. At worst, miscreants can, potentially, "gain access to sensitive memory information or control low-level operating system functions,” which is a fancy way of saying …

Quit WebEx now if you want to live! (Bad bugs, not killer slideware)

It's time for Cisco's Midweek Misery, netadmins, with four critical vulns to patch and a slew of others to look over if you have time. WebEx has two nasties, CVE-2018-0112 and CVE-2018-0264. CVE-2018-0112 is a remote code execution (RCE) vulnerability in two clients (the WebEx Business Suite client and WebEx Meetings), and …
Candle

Vlad that's over: Remote code flaws in Schneider Electric apps whacked

Infosec researchers at Tenable Security have unearthed a remote code execution flaw in critical infrastructure software made by energy management multinational Schneider Electric. The vulnerability could have allowed miscreants to control underlying critical infrastructure systems, researchers said. The apps affected – used …
Kat Hall, 2 May 2018
Oracle acrobatics in the cloud

Umm, Oracle – about that patch? It might not be very sticky ...

Earlier this month, Oracle patched a critical vulnerability in its WebLogic server – but someone identifying himself as an Alibaba security researcher reckons Big Red botched the patch. The bug in question was fixed in Oracle's 254-strong quarterly patch-fest that was headlined by Java and Spectre fixes. Tucked way down on …
Man opens hotel room with key card

Hotel, motel, Holiday Inn? Doesn't matter – they may need to update their room key software

Infosec outfit F-Secure has uncovered security vulnerabilities in hotel keycard systems that can be exploited by miscreants to break into rooms across the globe. Exploitable flaws were discovered in lock system software Vision by VingCard, which F-Secure said is used to secure millions of hotel rooms worldwide. Their findings …
Kat Hall, 25 Apr 2018
Angry man on laptop. Illustration via Shutterstock

Single single-sign-on SNAFU threatens three Cisco products

Cisco has announced a suite of patches against a bug in its Security Assertion Markup Language (SAML) implementation. As is so often the case with a language slip, the bug is inherited by multiple products. In the case of CVE-2018-0229, the affected systems are: Single sign-on authentication for the AnyConnect desktop …
Paisley skull

Chinese web giant finds Windows zero-day, stays schtum on specifics

Chinese company Quihoo 360 says it's found a Windows zero-day in the wild, but because it's notified Microsoft, it's not telling anyone else how it works. In this Weibo post (unless you speak Mandarin you'll need a translation tool), the company announced an “APT attack” on the unspecified zero-day “on a global scale”. …

Flash! Ah-ahhh! WebEx pwned for all of us!

Cisco has patched a serious vulnerability in its WebEx software that lets an attacker remotely execute code on target machines via poisoned Adobe Flash files. Switchzilla is today advising all users running WebEx Business Suite or WebEx Meetings (both client and server) to update their software in order to patch CVE-2018-0112 …
Shaun Nichols, 19 Apr 2018
iOS screenshot of iTunes Wi-Fi sync

How's your Wednesday? Things going well? OK, your iPhone, iPad can be pwned via Wi-Fi sync

RSA 2018 The iTunes Wi-Fi sync feature in Apple's iOS can be potentially abused by cops, snoops, and hackers to remotely extract information from, and control, iPhones and iPads. This is according to researchers at Symantec, who discovered that, once an iOS device trusts a physically connected computer, the device can, in certain …
Shaun Nichols, 18 Apr 2018

Security? We've heard of it, say web-app devs. 31 in 33 codebases have at least one big bad vuln

Automated source code analysis of 33 web applications has found that 94 per cent of them have at least one high-severity vulnerability, according to security biz Positive Technologies. "Web applications practically have a target painted on their back," said Leigh-Anne Galloway, cyber security resilience lead at the company in …
Thomas Claburn, 16 Apr 2018
Woman thumbs down, image via Shutterstock

Juniper admins: Pour that hipster gin and settle in for a session

Juniper Networks' bug-hunters have bagged a big haul and shown them off with this month's patch collection. Top of the Gin Palace's priority list is a fix for the critical-rated CVE-2018-0016. This bug affects devices running Connectionless Network Protocol (CLNP) routing on Junos OS 15.1: a crafted packet can “result in a …
A person hiding in a box

SAP's Business Client can own entire apps, DDOS them into dust

SAP has issued its April security update, which brings a waiting world news of ten patch-worthy problems. The nastiest has a CVSS rating of 9.8 and impacts SAP's Business Client, the desktop tool to access much of its wares. Details of the problem are behind a registration wall, but according to ERP Scan, the vulnerability is …
siren

Want to terrify a city with an emergency broadcast? All you need is a laptop and $30

Researchers have uncovered a remote hijacking vulnerability present in the systems many cities and organizations are using to manage emergency sirens and alerts. Dubbed SirenJack, the vulnerability would allow an attacker to remotely activate emergency alert systems manufactured by a company called ATI Systems. Bastille said …
Shaun Nichols, 11 Apr 2018
What the beep?

Linux Beep bug joke backfires as branded fix falls short

Retro programmers may need to reconsider using the Linux beep command as an activity or progress alert. One of the silliest bugs on record emerged late last week, when Debian project leader Chris Lamb took to the distro's security to post an advisory that the little utility had a local privilege escalation vulnerability. The …
hacker

Gosh, these 'hacker' nerds are only getting more sophisticated

Hackers have moved away from simple point-of-sale (POS) terminal attacks to more refined assaults on corporations' head offices. An annual report from security firm Trustwave out today highlighted increased sophistication of web app hacking and social engineering tactics on the part of miscreants. Half of the incidents …
John Leyden, 5 Apr 2018
Half mechanical brain

Brain monitor had remote code execution and DoS flaw

Cisco’s Talos security limb has warned that specialist medical hardware has remote code execution and denial of service bugs. Talos researchers say Natus Xltek EEG medical products are susceptible to “A specially crafted network packet” that “can cause a stack buffer overflow resulting in code execution.” Which is rather …

They forked this one up: Microsoft modifies open-source code, blows hole in Windows Defender

A remote-code execution vulnerability in Windows Defender – a flaw that can be exploited by malicious .rar files to run malware on PCs – has been traced back to an open-source archiving tool Microsoft adopted for its own use. The bug, CVE-2018-0986, was patched on Tuesday in the latest version of the Microsoft Malware …
Shaun Nichols, 4 Apr 2018
Shutterstock Easter Egg

Egg on Cisco's face: Three critical software bugs to fix over Easter

Cisco's ruined Easter for netadmins by revealing three critical-rated flaws, with fixes landing today. The company's IOS and IOS XE software need patching against two bugs, CVE-2018-0151 and CVE-2018-0171. CVE-2018-151 is a bounds-checking error in IOS/IOS XE's quality-of-service subsystem, and can be attacked using malicious …

Create a news alert about vulnerability, or find more stories about vulnerability.

Biting the hand that feeds IT © 1998–2018