lundi 14 octobre 2019    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Detecting and Preventing Emotet 2019 Campaign (CERT-EU Security Advisory 2019-021)

Since beginning of June 2019, the Emotet botnet stopped sending phishing emails to infect new victims. However, on August 22nd, 2019, the known Command-and-Control (CnC) servers started responding again. Since September 16th, 2019, CERT-EU has...
Auteur: Cert EU

Simjacker Vulnerability Impacting up to 1 Billion Phone Users (CERT-EU Security Advisory 2019-020)

AdaptiveMobile Security have uncovered a new and previously undetected vulnerability and associated exploits, called Simjacker. This vulnerability is currently being actively exploited. The main Simjacker attack involves an SMS containing a...
Auteur: Cert EU

Critical Exim TLS Vulnerability (CERT-EU Security Advisory 2019-019)

Exim Mail Transfer Agent (MTA) servers are exposed to a security vulnerability, which can grant attackers the ability to run malicious code with root privileges. This vulnerability has been assigned the number CVE-2019-15846. The vulnerability is...
Auteur: Cert EU

Cisco Critical Vulnerability Affecting IOS XE Software (CERT-EU Security Advisory 2019-018)

A major vulnerability affecting CISCO IOS XE operating system has been disclosed. The vulnerability identified as CVE-2019-12643 allows a remote user to bypass authentication and gain full control of the device that is running an outdated version...
Auteur: Cert EU

Vulnerabilities in Popular VPNs (CERT-EU Security Advisory 2019-017)

Several vulnerabilities impacting popular VPNs (by Palo Alto, Pulse Security, and Fortinet) have been recently seen being exploited in the wild. In most severe case, the vulnerabilities allow for remote code execution. Although the...
Auteur: Cert EU

Several Vulnerabilities in JQuery (CERT-EU Security Advisory 2019-016)

A popular JavaScript framework jQuery has multiple cross-site scripting vulnerabilities. While they are not critical, due to large popularity of jQuery they may be used in many various ways, and hence it is strongly advisable to upgrade jQuery to...
Auteur: Cert EU

CSRF Vulnerability in Cisco IOS XE Software Web UI (CERT-EU Security Advisory 2019-015)

A Cross-Site Request Forgery (CSRF) vulnerability in the web user interface (web UI) of CISCO IOS XE Software was discovered. In some CISCO products, the web UI has insufficient CSRF protection. An attacker can potentially perform a CSRF...
Auteur: Cert EU

Critical Vulnerabilities in Microsoft NTLM (CERT-EU Security Advisory 2019-014)

Two critical Microsoft vulnerabilities were discovered by the research team Preempt. The vulnerabilities consist of three logical flaws in NTLM (NT Lan Manager). The vulnerabilities allow an attacker to potentially execute malicious code remotely...
Auteur: Cert EU

Remote Desktop Services -- Remote Code Execution Vulnerability (CERT-EU Security Advisory 2019-013)

Microsoft released fixes for a critical Remote Code Execution vulnerability (CVE-2019-0708) in Remote Desktop Services that affects some older versions of Windows. The Remote Desktop Protocol (RDP) itself is not vulnerable. This vulnerability is...
Auteur: Cert EU

Thrangrycat – Critical Vulnerability Affecting Most Cisco Devices (CERT-EU Security Advisory 2019-012)

Cisco Secure Boot helps to ensure that the code that executes on Cisco hardware platforms is authentic and unmodified. The Cisco Secure Boot Hardware Tampering vulnerability (CVE-2019-1649) could allow an authenticated, local attacker to write a...
Auteur: Cert EU

Cisco Critical Vulnerability Affecting Nexus 9000 Switches (CERT-EU Security Advisory 2019-011)

A critical vulnerability affecting Nexus 9000 switches has been recently disclosed. The vulnerability identified as CVE-2019-1804 is a hardcoded SSH key pair that could allow an unauthenticated, remote attacker to connect to the affected system...
Auteur: Cert EU

Oracle WebLogic 0-day Vulnerability (CERT-EU Security Advisory 2019-010)

An unpatched, highly critical, zero-day vulnerability in Oracle WebLogic server was disclosed. Some attackers might have already started exploiting it in the wild. The vulnerability potentially allows attackers to remotely execute arbitrary commands.
Auteur: Cert EU

UPDATE: Oracle WebLogic 0-day Vulnerability (CERT-EU Security Advisory 2019-010)

A highly critical, zero-day vulnerability in Oracle WebLogic server was disclosed. Some attackers might have already started exploiting it in the wild. The vulnerability potentially allows attackers to remotely execute arbitrary commands. Oracle...
Auteur: Cert EU

Confluence Server Critical Remote Code Execution Vulnerability (CERT-EU Security Advisory 2019-009)

A server-side template injection vulnerability has been discovered in Confluence Server and Data Center, in the Widget Connector. An attacker able to exploit this issue could achieve path traversal and remote code execution on systems that run a...
Auteur: Cert EU

VMware ESXi, Workstation, and Fusion Multiple Security Vulnerabilities (CERT-EU Security Advisory 2019-008)

VMware has released security updates to address security vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system including allowing the guest to execute code on the host...
Auteur: Cert EU

Operation ShadowHammer (CERT-EU Security Advisory 2019-007)

Kaspersky has discovered a supply chain attack that affects ASUS computers. Dubbed Operation ShadowHammer, the operation took place from June to November 2018. The threat actors used the ASUS Live Update service to infect machines with an...
Auteur: Cert EU

Adobe ColdFusion Critical Arbitrary Code Execution (CERT-EU Security Advisory 2019-006)

A critical vulnerability (CVE-2019-7816) in the web application development platform Adobe ColdFusion has been recently patched. The vulnerability allows attackers to execute arbitrary code bypassing a file upload restriction. Adobe released a...
Auteur: Cert EU

Critical Flaw in Drupal Allows Remote Code Execution (CERT-EU Security Advisory 2019-005)

An important security update was released by Drupal, which patches a remote code execution vulnerability (number CVE-2019-6340). The vulnerability was caused by the data passed into the RESTful Web service without strict verification. Successful...
Auteur: Cert EU

WordPress Remote Code Execution (CERT-EU Security Advisory 2019-004)

A critical remote code execution vulnerability in versions of WordPress prior to 5.0.3 was disclosed. A flaw could be exploited by an attacker who gains access to an account with at least author privileges on a WordPress install to execute...
Auteur: Cert EU

PRunC Vulnerability Affecting Container Management Systems (CERT-EU Security Advisory 2019-003)

A container breakout security flaw was found in underlying software used by _containerization_ software (operating-system-level virtualization software). The vulnerability - CVE-2019-5736 - dubbed "runc container breakout" allows specially...
Auteur: Cert EU

Privilege Escalation Exploiting MS Exchange (CERT-EU Security Advisory 2019-002)

A vulnerability was discovered in Microsoft Exchange Server that allows a regular user to perform a privilege escalation technique and gain Domain Administrator access. Abusing the privileged role Exchange servers normally have by default on...
Auteur: Cert EU

Web Cache Poisoning Vulnerabilities - (CERT-EU Security Advisory 2019-001)

Web cache poisoning has long been considered a _theoretical_ threat. However, already published research describes practical examples of this type of attack. Also, recently there have been documented cases of observing exploitation of these types...
Auteur: Cert EU

Web Cache Poisoning Vulnerabilities - (CERT-EU Security Advisory 2019-001)

Web cache poisoning has long been considered a _theoretical_ threat. However, already published research describes practical examples of this type of attack. Also, recently there have been documented cases of observing exploitation of these types...
Auteur: Cert EU

BLEEDINGBIT - Vulnerabilities Affecting Enterprise WiFi Devices (CERT-EU Security Advisory 2018-028)

Security researchers disclosed details about two critical vulnerabilities related to the use of BLE (Bluetooth Low Energy) chips made by Texas Instruments (TI). The vulnerable BLE chips are embedded in WiFi network equipment from Cisco, Meraki...
Auteur: Cert EU

Multiple Vulnerabilities in Oracle Products (CERT-EU Security Advisory 2018-027)

On 16th of October 2018, Oracle released a critical patch bundle that addresses several security vulnerabilities. The patch contains 301 new fixes since the last patch. The addressed vulnerabilities affect many Oracle products including among...
Auteur: Cert EU
12345678910Last

Événements SSI

BLOCKCHAIN

Conférence et exposition sur les applications d'entreprise de la blockchain à Paris, cité universitaire internationale, les 13 et 14 novembre 2019. Organisés par Corp Agency.

TRUSTECH

Cet événement international dédié aux paiements, à l'identification et à la sécurité est organisé à Cannes (palais des festivals) du 26 au 28 novembre 2019. Organisé par Comexposium.

FIC

Ayant pour thème cette année "Replacer l'humain au coeur de la cybersécurité", le Forum International de la Cybersécurité occupe les 28, 29 et 30 janvier 2020 le Grand Palais de Lille. Organisé par la Région Hauts-de-France et Euratechnologies, la Gendarmerie Nationale et CEIS.

RSS