[CERT-daily] Tageszusammenfassung - 28.08.2017
Daily end-of-shift report
team at cert.at
Mon Aug 28 18:04:02 CEST 2017
=====================
= End-of-Day report =
=====================
Timeframe: Freitag 25-08-2017 18:00 − Montag 28-08-2017 18:00
Handler: Robert Waldner
Co-Handler: Alexander Riepl
=====================
= News =
=====================
=====================
= Advisories =
=====================
∗∗∗ Disabling Intel ME 11 via undocumented mode ∗∗∗
---------------------------------------------
.. researchers has delved deep into the internal architecture of Intel
Management Engine (ME) 11, revealing a mechanism that can disable Intel
ME after hardware is initialized and the main processor starts. In this
article, we describe how we discovered this undocumented mode and how
it is connected with the U.S. governments High Assurance Platform (HAP)
program.
---------------------------------------------
http://blog.ptsecurity.com/2017/08/disabling-intel-me.html
∗∗∗ Security Advisory - Two Vulnerabilities in Smart Phones ∗∗∗
---------------------------------------------
http://www.huawei.com/en/psirt/security-advisories/2017
/huawei-sa-20170807-01-smartphone-en
∗∗∗ IBM Security Bulletin: OpenSSL Security Advisory [22 Sep 2016 ∗∗∗
---------------------------------------------
http://www.ibm.com/support/docview.wss?uid=ssg1S1010571
∗∗∗ IBM Security Bulletin: Vulnerabilities in OpenSSL affect IBM
Sametime Community Server ∗∗∗
---------------------------------------------
http://www.ibm.com/support/docview.wss?uid=swg22006228
∗∗∗ IBM Security Bulletin: IBM Cognos Analytics is affected by multiple
vulnerabilities ∗∗∗
---------------------------------------------
http://www-01.ibm.com/support/docview.wss?uid=swg22007242
∗∗∗ IBM Security Bulletin: A vulnerability in IBM Sametime Web Player
(CVE-2016-2980) ∗∗∗
---------------------------------------------
http://www.ibm.com/support/docview.wss?uid=swg22006447
∗∗∗ IBM Security Bulletin: Security vulnerabilities in IBM Sametime
Connect client (CVE-2016-0243, CVE-2016-2974) ∗∗∗
---------------------------------------------
http://www.ibm.com/support/docview.wss?uid=swg22006444
∗∗∗ IBM Security Bulletin: Vulnerabilities in OpenSSL affect IBM Cisco
SAN switches and directors (CVE-2016-2108, CVE-2016-2107,
CVE-2016-2105, CVE-2016-2106, CVE-2016-2109, CVE-2016-2176) ∗∗∗
---------------------------------------------
http://www.ibm.com/support/docview.wss?uid=ssg1S1010566
∗∗∗ IBM Security Bulletin: Various Security Vulnerabilities in IBM
Sametime Proxy Server ∗∗∗
---------------------------------------------
http://www.ibm.com/support/docview.wss?uid=swg22006441
--
CERT.at Daily mailing list
Listinfo: https://lists.cert.at/cgi-bin/mailman/listinfo/daily
More information about the Daily
mailing list