Month: March 2018

Cisco IOS/IOS XE Software Remote Code Execution Vulnerability (CVE-2018-0171)

March 30, 2018

Recently a serious vulnerability (CVE-2018-0171) was disclosed in Cisco IOS and IOS XE software. An attacker could reload an affected device without authorization, resulting in a denial of service condition or remote code execution. This vulnerability originated from improper validation of packet data. An attack could exploit this vulnerability by sending elaborately-crafted Smart Install message […]

Drupal Code Execution Vulnerability Analysis

March 30, 2018

Recently, Drupal, a popular open-source content management framework, is found to contain a highly critical remote code execution vulnerability, which allows attackers to execute malicious code on a Drupal site, resulting in the site being completely compromised. This vulnerability is assigned CVE-2018-7600. The root cause of this vulnerability is related with Drupal’s rendering of forms: […]

ThreatQ Leverages NSFOCUS to Categorize Threats and Pinpoint Valuable Connections

March 22, 2018

It is no surprise that everyone, including organizations, are vulnerable to a large amount of threats on a daily basis. In Q3 of 2016 alone, Panda Labs captured 18 million new malware samples; that is not including samples detected by other companies. Furthermore, in a study done by Friedrich-Alexander University (FAU), 78% of participants stated […]

ThreatQ Leverages NSFOCUS to Categorize Threats and Pinpoint Valuable Connections

March 20, 2018

Local Privilege Escalation Vulnerability in Latest Ubuntu Server

March 19, 2018

  The latest Ubuntu Server has exposed a local privilege escalation vulnerability (CVE-2017-16995). This vulnerability has been fixed in earlier versions but has resurfaced in the latest version. Attackers can directly gain root privileges through this vulnerability. Currently Ubuntu has not released the patch yet. Affected version: Currently we know:  Ubuntu 16.04.4 (the latest version) […]

Remote Code Execution Vulnerability in ManageEngine Applications Manager 13.5

March 14, 2018

Recently, researchers discovered a serious remote code execution (RCE) vulnerability (CVE-2018-7890) in ManageEngine Applications Manager. Vulnerabilities originate from the publicly accessible testCredential.do endpoint, which can result in remote code execution when validating user-supplied credentials. At present, no official version has been released to fix this vulnerability. Reference links: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7890 https://www.securityfocus.com/bid/103358 https://pentest.blog/advisory-manageengine-applications-manager-remote-code-execution-sqli-and/ What is ManageEngine Applications Manager? […]

Cloud Expo Asia & Data Centre World 2018

March 12, 2018

Cloud Expo Asia & Data Centre World 2018 October 10-11, 2018 Marina Bay Sands, Singapore

2018 AUSCERT Cyber Security Conference

March 12, 2018

2018 AUSCERT Cyber Security Conference May 29- June 1, 2018 Gold Coast

Cloud & Cyber Security Expo 2018

March 12, 2018

Cloud & Cyber Security Expo 2018 May 16-17, 2018 HKCEC, Hong Kong

RSA Conference 2018

March 12, 2018

RSA Conference 2018 April 16-20, 2018 San Francisco, CA

Search

Subscribe to the NSFOCUS Blog