Articles about vulnerability

spectre

Boffins split on whether Spectre fix needs tweaked hardware

Analysis Processor security experts – including one cited in the Meltdown paper – are split on whether the resolution of the Spectre vulnerability may need to involve hardware modifications or the software defences being rolled out are adequate. The Meltdown vulnerability, which by contrast is already comprehensively defended against, …
John Leyden, 12 Jan 2018
hacker

Intel AMT security locks bypassed on corp laptops – fresh research

Updated Security shortcomings in Intel's Active Management Technology (AMT) can be exploited by miscreants to bypass login prompts on notebook computers. Insecure defaults in Intel AMT allow an intruder to completely bypass user and BIOS passwords and TPM and Bitlocker PINs to break into almost any corporate laptop in a matter of 30 …
John Leyden, 12 Jan 2018
Number one foam hand

Juniper scores dubious honour of owning CVE-2018-0001

Juniper Networks, come on down: you have won the dubious honour of being responsible for CVE-2018-0001. Apparently Juniper infosec bods didn't take much time off over the Christmas-New Year period, instead running up fixes for ten 2018-dated CVE (common vulnerability and exposure) notices. CVE-2018-0001 is a bug affecting …

CPU bug patch saga: Antivirus tools caught with their hands in the Windows cookie jar

Microsoft's workaround to protect Windows computers from the Intel processor security flaw dubbed Meltdown has revealed the rootkit-like nature of modern security tools. Some anti-malware packages are incompatible with Redmond's Meltdown patch, released last week, because the tools make, according to Microsoft, “unsupported …
John Leyden, 9 Jan 2018

How are the shares, Bry? Intel chief cops to CPU fix slowdowns

Intel's boss has finally admitted software fixes to address the Meltdown and Spectre vulnerabilities in most modern CPUs will incur a performance hit. At the Consumer Electronics Show in Las Vegas on Monday, Brian Krzanich stuck to the line the design weaknesses represented an "industry-wide issue across several different …
John Leyden, 9 Jan 2018
stressed exec in server room. pic shutterstock

More stuff broken amid Microsoft's efforts to fix Meltdown/Spectre vulns

More examples have emerged of security fixes for the Meltdown vulnerability breaking things. Patching against CVE-2017-5753 and CVE-2017-5715 (Spectre) and CVE-2017-5754 (Meltdown) borks both the PulseSecure VPN client and Sandboxie, the sandbox-based isolation program developed by Sophos. radiation symbol Microsoft patches …
John Leyden, 8 Jan 2018
plasters cover arm. photo by shutterstock

EMC admin? Plug this hole before the holidays

Dell EMC has patched an SMBv1 bug in its Data Domain Deduplication and Data Protection software. It's probably worth your time running the patch in, if you can, because as the advisory explained, it's a memory overflow that could open a system to remote code execution (RCE). CVE-2017-14385 affects quite a few versions of the …
Facepalm2, photo via Shutterstock

GoAhead ... and pwn us: Remote hijacking flaw in Internet of Things gear

Researchers have uncovered a vulnerability in the GoAhead web server software – embedded in Internet of Things devices – that can be potentially remotely exploited to hijack gadgets. The flaw, designated CVE-2017-17562, allows an attacker to inject evil code to vulnerable devices and take control of the hardware and spy on …
Shaun Nichols, 20 Dec 2017

Windows 10 Hello face recognition can be fooled with photos

If you've skipped recent Windows 10 Creators Updates, here's a reason to change your mind: its facial recognition security feature, Hello, can be spoofed with a photograph. The vulnerability was announced by German pentest outfit Syss at Full Disclosure. Even if you've installed the fixed versions that shipped in October – …

Windows 10 bundles a briefly vulnerable password manager

Google Project Zero's Tavis Ormandy has turned up a howling blunder in a password manager bundled with Windows 10. On Friday, Ormandy publicly disclosed the bug, which lies not in the Microsoft operating system but in an included third-party Keeper password manager. He wrote: “I've heard of Keeper, I remember filing a bug a …
Volodymyr Krasyuk http://www.shutterstock.com/gallery-286606p1.html

Juniper squeezes vulns that allow total p0wnage

Juniper admins using the company's NorthStar WAN SDN Controller Application, hop to it: the company's just dropped fixes to 28 security vulnerabilities. The bugs apply to version 2.1.0 Service Pack 1 and newer versions of the application. With such a crop available, here are the most severe bugs, some of them internal to the …

Microsoft Dynamics 365 sandbox leaked TLS certificate's private parts

Another day, another credential found wandering without a leash: Microsoft accidentally left a Dynamics 365 TLS certificate and private key where they could leak, and according to the discoverer, took 100 days to fix the bungle. Matthias Gliwka, a Stuttgart-based software developer, discovered the slip while working with the …

Google and pals rush to repair Android dev tools, block backdoor risks

Security researchers have found several flaws in the developer tools and environments used by Android programmers. The flaws, if exploited, would enable hackers to exploit the developer environments and insert malicious code (like adware or a cryptominer) into legitimate apps, without the developers of those kosher apps …
John Leyden, 6 Dec 2017
Eclipse photo via Shutterstock

Beware the IDEs of Android: three biggies have vulnerabilities

Developers using the Android Studio, Eclipse, and IntelliJ IDEA have been advised to update their IDEs against serious and easily-exploitable vulnerabilities. Check Point Software Technologies went public with the bugs on December 4, but said it made its discoveries in May 2017. Initially, Check point's four researchers (Eran …

Dirty COW redux: Linux devs patch botched patch for 2016 mess

Linus Torvalds last week rushed a patch into the Linux kernel, after researchers discovered the patch for 2016's Dirty COW bug had a bug of its own. Dirty COW is a privilege escalation vulnerability in Linux's “copy-on-write” mechanism, first documented in October 2016 and affecting both Linux and Android systems. As The …

RSA coughs to critical-rated bug in its authentication SDK

RSA developers and admins have been given two critical-level authentication bugs to patch. For the sysadmin, the issue struck RSA's software providing Web-based authentication for Apache. CVE-2017-14377 is an authentication bypass that existed because of an “input validation flaw in RSA Authentication Agent for Web for Apache …
DNS toolkit

Open source nameserver used by millions needs patching

Open source DNS software vendor PowerDNS has advised users to patch its "Authoritative" and "Recursor" products, to squish five bugs disclosed today. None of the bugs pose a risk that PowerDNS might itself be compromised, but this is the DNS: what an attacker can do is fool around with DNS records in various ways. That can be …
bomb

Exim-ergency! Unix mailer has RCE, DoS vulnerabilities

Sysadmins who tend Exim servers have been advised to kick off their working weeks with the joy of patching. The popular (if relatively low-profile) Internet mail message transfer agent (MTA) advised of flaws in a Black Friday post to its public bugtracker, which as contributor Phil Pennock said in this message came without any …

Create a news alert about vulnerability, or find more stories about vulnerability.

Biting the hand that feeds IT © 1998–2018