Overview Recently, NSFOCUS monitored curl's official security announcement, which fixed the SOCKS5 heap buffer overflow vulnerability (CVE-2023-38545) and cookie injection vulnerability (CVE-2023-38546). The details of the vulnerability have been made public. Affected users should upgrade curl as soon as possible. SOCKS5 Heap Buffer Overflow Vulnerability (CVS 2023-38545) When curl is...
Year: 2023
O que é um ataque de força bruta? Veja como se prevenir
A segurança cibernética é uma preocupação mundial crescente. E, entre as ameaças mais persistentes, os ataques de força bruta se destacam. Neste artigo, exploraremos o que são esses ataques, como funcionam e, o mais importante, como você pode se prevenir contra eles. A segurança da sua empresa está em jogo...
Exim Remote Code Execution Vulnerability (CVS 2023-42115) Notification
Overview Recently, NSFOCUS CERT detected an Exim remote code execution vulnerability (CVE-2023-42115). When external authentication is enabled, due to improper user input verification, an unauthenticated attacker can remotely exploit this vulnerability by writing data beyond the bounds, ultimately executing arbitrary code on the target server. At present, the details of...
Automated and Manual Backup Procedures for ADS, ADSM and NTA
Configuration backup is important in many scenarios: System Upgrades: Backing up the configuration file can be used as a precautionary measure before carrying out system updates, software upgrades, or installing patches. This way, we can revert to the previous configuration state if something goes wrong during the update process. Hardware...
NSFOCUS Receives CNVD Outstanding Contribution Award for Original Vulnerability Submission
The CNVD (China National Vulnerability Database) platform recently initiated the 2022 annual technical group support unit's capability assessment. A comprehensive assessment was conducted across six capability domains, including vulnerability collection, vulnerability discovery, big data analysis of vulnerability threat risks, vulnerability technical analysis, major vulnerability incident response, and collaborative teamwork. NSFOCUS...
Mirai Botnet’s New Wave: hailBot,kiraiBot, catDDoS, and Their Fierce Onslaught
I. Abstract In September 2023, NSFOCUS global threat hunting system monitored several new botnet variant families developed based on Mirai, among which hailBot, kiraiBot and catDDoS are the most active, are accelerating their spread, and are widely deployed, which has constituted a considerable threat. Through this article, we will disclose...
