Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Leak of hacking tools targeting Fortinet devices CERT-EU Security Advisory 2016-135

On 13th of august, a previously unknown group called "Shadow Brokers" publicly released a large number of hacking tools they claimed were used by the "Equation Group". The targeted devices include Fortinet devices. This advisory presents risk...
Auteur: Cert EU

Leak of hacking tools targeting CISCO firewalls CERT-EU Security Advisory 2016-133

On 13th of august, a previously unknown group called "Shadow Brokers" publicly released a large number of hacking tools they claimed were used by the "Equation Group". The targeted devices include CISCO Adaptive Security Appliance (ASA) and PIX...
Auteur: Cert EU

SMB bug allows to leak user login and NTLMv2 hashes [CERT-EU Security Advisory 2016-132]

The Server Message Block (SMB) protocol is a network protocol allowing files and printers sharing over different networks (TCP/IP included).
Auteur: Cert EU

HTTPoxy - CGI "HTTP_PROXY" variable name clash (CERT-EU Security Advisory 2016-130)

Web servers running in a CGI or CGI-like context may assign client request Proxy header values to internal HTTP_PROXY environment variables. This vulnerability can be leveraged to conduct man-in-the-middle (MITM) attacks on internal subrequests...
Auteur: Cert EU

Drupal RESTful Web Services Module Remote Code Execution Vulnerability (CERT-EU Security Advisory 2016-129)

The RESTful Web Services module for Drupal is prone to a remote code-execution vulnerability; fixes are available.
Auteur: Cert EU

Drupal Webform Multiple File Upload Module Remote Code Execution Vulnerability (CERT-EU Security Advisory 2016-128)

The Webform Multiple File Upload module for Drupal is prone to a remote code-execution vulnerability; fixes are available.
Auteur: Cert EU

Drupal Coder Module Remote Code Execution Vulnerability (CERT-EU Security Advisory 2016-127)

The Coder module for Drupal is prone to a remote code-execution vulnerability; fixes are available.
Auteur: Cert EU

Critical Adobe Flash bug (CVE-2016-4171) (CERT-EU Security Advisory 2016-126)

A critical vulnerability (CVE-2016-4171) exists in Adobe Flash Player 21.0.0.242 and earlier versions for Windows, Macintosh, Linux, and Chrome OS. Successful exploitation could cause a crash and potentially allow an attacker to take control of...
Auteur: Cert EU

Critical vulnerability in Adobe Flash Player (CVE-2016-4117) (CERT-EU Security Advisory 2016-125)

A critical vulnerability (CVE-2016-4117) exists in Adobe Flash Player 21.0.0.226 and earlier versions for Windows, Macintosh, Linux, and Chrome OS. Successful exploitation could cause a crash and potentially allow an attacker to take control of...
Auteur: Cert EU

Critical vulnerability in ImageMagick allowing remote code execution (CERT-EU Security Advisory 2016-124)

On May 3rd, 2016, security researchers reported several bugs in ImageMagick [1], a package commonly used by web services to process images. [2][3]
Auteur: Cert EU

Badlock Bug in Windows and Samba (CERT-EU Security Advisory 2016-123)

On April 12th, 2016 Badlock, a crucial security bug in Windows and Samba was disclosed.
Auteur: Cert EU

Cisco - Denial of Service Vulnerabilities (CERT-EU Security Advisory 2016-122)

The March 23, 2016, release of the Cisco IOS and IOS XE Software Security Advisory Bundled Publication includes six Cisco Security Advisories that describe vulnerabilities in Cisco IOS Software.
Auteur: Cert EU

UPDATE Remote Code Execution in all git versions (client + server) < 2.7.1 (CERT-EU Security Advisory 2016-121)

Version: 17/03/2016 Corrigendum initial publication typos A vulnerability in Git allows a perpetrator to execute code remotely while cloning or pushing repository with large filenames or a large number of nested trees..
Auteur: Cert EU

Remote Code Execution in all git versions (client+server)<2.7.1 (CERT-EU Security Advisory 2016-120)

A vulnerability in Git allows a perpetrator to execute code remotely while cloning or pushing repository with large filenames or a large number of nested trees..
Auteur: Cert EU

CISCO CVE-2016-1329 (CERT-EU Security Advisory 2016-119)

A vulnerability in Cisco NX-OS Software allows a perpetrator to connect to the device with administrative privileges.
Auteur: Cert EU

DROWN Attack (CERT-EU Security Advisory 2016-118)

A vulnerability in SSLv2 can lead to a compromise the cryptographic scheme of safe transactions over Internet. The attack that exploits the vulnerability is called "DROWN". The attacker can easily interfere between client and server and monitor...
Auteur: Cert EU

Palo Alto critical bugs (CERT-EU Security Advisory 2016-117)

Palo Alto Networks has revealed four new vulnerabilities
Auteur: Cert EU

Vulnerability in Microsoft Enhanced Mitigation Experience Toolkit (EMET) (CERT-EU Security Advisory 2016-116)

The Enhanced Mitigation Experience Toolkit (EMET) is a utility that helps prevent vulnerabilities in software from being successfully exploited.
Auteur: Cert EU

UPDATE CVE-2015-7547: glibc getaddrinfo stack-based buffer overflow (CERT-EU Security Advisory 2016-115)

Updated: CentOS has released updates to vulnerability remedy. F5 has published information about products affected products.
Auteur: Cert EU

CVE-2015-7547: glibc getaddrinfo stack-based buffer overflow (CERT-EU Security Advisory 2016-114)

Vulnerability in glibc allows unauthenticated attacker to remotely exploit and cause: - Denial-of-Service (DoS) - Remote code execution (administrator / root privileges) - Remote code execution (User)
Auteur: Cert EU

CISCO IKE v1 and v2 Vulnerability (CERT-EU Security Advisory 2016-113)

A vulnerability in the Internet Key Exchange .v1 and .v2 of CISCO ASA software can be exploited causing DOS or even remote code execution.
Auteur: Cert EU

SSH Login vulnerability on multiple Fortinet products (CERT-EU Security Advisory 2016-62) - UPDATED

The FortiOS SSH has a login vulnerability. Remote console access to vulnerable devices with "Administrative Access" enabled for S= SH is possible.
Auteur: Cert EU

OpenSSH roaming feature vulnerabilities (CERT-EU Security Advisory 2016-50)

Since version 5.4 (released on March 8, 2010), the OpenSSH client supports an undocumented feature called roaming: if the connection to an SSH server breaks unexpectedly, and if the server supports roaming as well, the client is able to reconnect...
Auteur: Cert EU

FortiOS login vulnerability (CERT-EU Security Advisory 2016-45)

The FortiOS SSH has a login vulnerability. Remote console access to vulnerable devices with "Administrative Access" enabled for S= SH is possible. A Pyhton script was released that can be used to exploit the vulnerability.
Auteur: Cert EU

Crypto implementation flaws in Pacom GMS System (CERT-EU Security Advisory 2015-761)

The Pacom 1000 implementation have several serious implementation flaws in cryptography mechanisms. The flaws that were found can bypass the security of any unpatched installation. The issue could affect the Psysical Security entities of a...
Auteur: Cert EU
12345678910Last

Événements SSI