[CERT-daily] Tageszusammenfassung - Mittwoch 9-09-2015

Wed Sep 9 18:03:20 CEST 2015

=======================
= End-of-Shift report =
=======================

Timeframe:   Dienstag 08-09-2015 18:00 − Mittwoch 09-09-2015 18:00
Handler:     Alexander Riepl
Co-Handler:  n/a


*** PMASA-2015-4 ***
---------------------------------------------
This vulnerability allows to complete the reCaptcha test and subsequently perform a brute force attack to guess user credentials without having to complete further reCaptcha tests.
---------------------------------------------
https://www.phpmyadmin.net/security/PMASA-2015-4/


*** Cisco Application Visibility and Control FlexConnect UDP Vulnerability ***
---------------------------------------------
A vulnerability in Cisco Application Visibility and Control (AVC) software for wireless networking could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition.
---------------------------------------------
http://tools.cisco.com/security/center/viewAlert.x?alertId=40845


*** Cisco Security Management Appliance Log Rollover Denial of Service Vulnerability ***
---------------------------------------------
A vulnerability in the web interface of the Cisco Security Management Appliance (SMA) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on a targeted device.
---------------------------------------------
http://tools.cisco.com/security/center/viewAlert.x?alertId=40847


*** [20150908] - Core - XSS Vulnerability ***
---------------------------------------------
http://developer.joomla.org/security-centre/626-20150908-core-xss-vulnerability.html


*** MS15-SEP - Microsoft Security Bulletin Summary for September 2015 - Version: 1.1 ***
---------------------------------------------
https://technet.microsoft.com/en-us/library/security/MS15-SEP


*** Malicious Google Search Console Verifications ***
---------------------------------------------
This past summer we noticed a trend of more and more Blackhat SEO hacks trying to verify additional accounts as owners of compromised sites in Google Search Console (formerly Webmaster Tools). Google Search Console provides really useful ..
---------------------------------------------
https://blog.sucuri.net/2015/09/malicious-google-search-console-verifications.html


*** Advantech WebAccess Buffer Overflow Vulnerability ***
---------------------------------------------
This advisory provides mitigation details for a stack-based overflow vulnerability in Advantech's WebAccess application to NCCIC/ICS-CERT.
---------------------------------------------
https://ics-cert.us-cert.gov/advisories/ICSA-15-251-01


*** Patchday: Microsoft stopft 55 Lücken, Adobe nur zwei ***
---------------------------------------------
Während Microsoft diesen Monat an der Sicherheit von mehreren Anwendungen schraubt, konzentriert sich Adobe ausschließlich auf den Shockwave Player.
---------------------------------------------
http://heise.de/-2808452


*** Turla APT Group Abusing Satellite Internet Links ***
---------------------------------------------
Researchers at Kaspersky Lab have revealed that the Turla APT gang is using satellite-based Internet links to hide command-and-control activities.
---------------------------------------------
http://threatpost.com/turla-apt-group-abusing-satellite-internet-links/114586/


*** A Brief Examination of Hacking Team's Crypter: core-packer. ***
---------------------------------------------
In this blog entry we investigate how Italian malware vendor Hacking Team obfuscated their malware, specifically the custom software they developed for this task called core-packer2. This analysis was a joint project between Will Cummings and Ethan Heilman.
---------------------------------------------
http://ethanheilman.tumblr.com/post/128708937890/a-brief-examination-of-hacking-teams-crypter