CERT – Page 30 – WindowsTechs.com

VU#166743: Das U-Boot AES-CBC encryption implementation contains multiple vulnerabilities

Posted on September 8, 2017 by CERT

Das U-Boot is a device bootloader that can read its configuration from an AES encrypted file. For devices utilizing this environment encryption mode,U-Boot’s use of a zero initialization vector and improper handling of an error condition may allow attacks against the underlying cryptographic implementation and allow an attacker to decrypt the data. Continue reading VU#166743: Das U-Boot AES-CBC encryption implementation contains multiple vulnerabilities→

VU#112992: Apache Struts 2 framework REST plugin insecurely deserializes untrusted XML data

Posted on September 6, 2017 by CERT

Apache Struts 2 framework,versions 2.5 to 2.5.12,with REST plugin insecurely deserializes untrusted XML data. A remote,unauthenticated attacker can leverage this vulnerability to execute arbitrary code in the context of the Struts application. Continue reading VU#112992: Apache Struts 2 framework REST plugin insecurely deserializes untrusted XML data→

VU#403768: Akeo Consulting Rufus fails to update itself securely

Posted on August 29, 2017 by CERT

Akeo Consulting Rufus fails to securely check for and retrieve updates,which an allow an authenticated attacker to execute arbitrary code on a vulnerable system. Continue reading VU#403768: Akeo Consulting Rufus fails to update itself securely→

VU#824672: Microsoft Windows automatically executes code specified in shortcut files

Posted on August 3, 2017 by CERT

Microsoft Windows automatically executes code specified in shortcut(LNK)files. Continue reading VU#824672: Microsoft Windows automatically executes code specified in shortcut files→

VU#793496: Open Shortest Path First (OSPF) protocol implementations may improperly determine LSA recency

Posted on July 27, 2017 by CERT

Open Shortest Path First(OSPF)protocol implementations may improperly determine Link State Advertisement(LSA)recency for LSAs with MaxSequenceNumber. Attackers with the ability to transmit messages from a routing domain router may send specially crafted OSPF messages to poison routing tables within the domain. Continue reading VU#793496: Open Shortest Path First (OSPF) protocol implementations may improperly determine LSA recency→

VU#793496: Open Shortest Path First (OSPF) protocol implementations may improperly determine LSA recency

Posted on July 27, 2017 by CERT

VU#838200: Telerik Web UI contains cryptographic weakness

Posted on July 25, 2017 by CERT

The Telerik Web UI,versions R2 2017(2017.2.503)and prior,is vulnerable to a cryptographic weakness which an attacker can exploit to extract encryption keys. Continue reading VU#838200: Telerik Web UI contains cryptographic weakness→

VU#586501: Inmarsat AmosConnect8 Mail Client Vulnerable to SQL Injection and Backdoor Account

Posted on July 20, 2017 by CERT

Inmarsat Solutions offers a shipboard email client service,AmosConnect 8(AC8),which was designed to be utilized over satellite networks in a highly optimized manner. IOActive has identified two security vulnerabilities in the client software:On-board ship network access could provide visibility of user names and passwords configured on the client device. A backdoor account has been identified in the client that provides full system privileges. This vulnerability could be exploited remotely. An attacker with high skill would be able to exploit this vulnerability. AmosConnect 8 has been deemed end of life,and no longer supported. Inmarsat customers must contact Inmarsat Customer Service to obtain the replacement mail client software. Continue reading VU#586501: Inmarsat AmosConnect8 Mail Client Vulnerable to SQL Injection and Backdoor Account→

VU#547255: Dahua IP cameras Sonia web interface is vulnerable to stack buffer overflow

Posted on July 18, 2017 by CERT

Dahua IP camera products using firmware versions prior to V2.400.0000.14.R.20170713 include a version of the Sonia web interface that may be vulnerable to a stack buffer overflow. Continue reading VU#547255: Dahua IP cameras Sonia web interface is vulnerable to stack buffer overflow→

VU#489392: Acronis True Image fails to update itself securely

Posted on June 19, 2017 by CERT

Acronis True Image fails to securely check for and retrieve updates,which an allow an authenticated attacker to execute arbitrary code with administrator privileges. Continue reading VU#489392: Acronis True Image fails to update itself securely→