[CERT-daily] Tageszusammenfassung - Mittwoch 6-07-2016

Daily end-of-shift report team at cert.at
Wed Jul 6 18:09:23 CEST 2016


=======================
= End-of-Shift report =
=======================

Timeframe:   Dienstag 05-07-2016 18:00 − Mittwoch 06-07-2016 18:00
Handler:     Robert Waldner
Co-Handler:  n/a



*** EU-Parlament beschließt Cybersicherheitsgesetz mit Meldepflicht ***
---------------------------------------------
Die europäischen Abgeordneten haben den lange umstrittenen Richtlinienentwurf zur Netz- und Informationssicherheit verabschiedet. Damit kommen auf größere Online-Anbieter und Betreiber kritischer Infrastrukturen Auflagen zu.
---------------------------------------------
http://heise.de/-3258129




*** Encryption Bypass Vulnerability Impacts Half of Android Devices ***
---------------------------------------------
More than half of Android devices are vulnerable to encryption bypass attack, say researchers.
---------------------------------------------
http://threatpost.com/encryption-bypass-vulnerability-impacts-half-of-android-devices/119039/




*** Nasty BIOS bug slugs Gigabyte, hackers say ***
---------------------------------------------
Vendors queue for punishment as ThinkPwn fallout spreads Gigabyte has been swept into turmoil surrounding low-level security vulnerabilities that allows attackers to kill flash protection, secure boot, and tamper with firmware on PCs by Lenovo and other vendors.
---------------------------------------------
http://go.theregister.com/feed/www.theregister.co.uk/2016/07/06/nasty_bios_bug_slugs_gigabyte_hackers_say/




*** HP sichert Router gegen Fremdzugriffe ab ***
---------------------------------------------
Hewlett Packard Enterprise versorgt einige Netzwerk-Produkte mit Sicherheitsupdates für zum Teil zwei Jahre alten Lücken.
---------------------------------------------
http://heise.de/-3256913




*** Security Advisory - Multiple Vulnerabilities in OpenSSL in May 2016 ***
---------------------------------------------
CVE-2016-2108, CVE-2016-2107, CVE-2016-2106, CVE-2016-2105, CVE-2016-2109, CVE-2016-2176
Huawei has released software updates to fix this vulnerability.
---------------------------------------------
http://www.huawei.com/en/psirt/security-advisories/2016/huawei-sa-20160706-01-openssl-en




*** Android-App verrät auch WLAN-Passwörter von A1-Routern ***
---------------------------------------------
Mit der Android-App RouterKeygen lassen sich auch WLAN-Passwörter von A1-Routern auslesen. Betroffen sind alte Router-Modelle aus dem Jahr 2011.
---------------------------------------------
http://futurezone.at/digital-life/android-app-verraet-auch-wlan-passwoerter-von-a1-routern/208.291.990




*** Rexroth Bosch BLADEcontrol-WebVIS Vulnerabilities ***
---------------------------------------------
This advisory provides mitigation details for an SQL injection vulnerability and a cross-site scripting vulnerability in the Rexroth Bosch BLADEcontrol-WebVIS.
---------------------------------------------
https://ics-cert.us-cert.gov/advisories/ICSA-16-187-01




*** "Elanor": Getarnte Mac-Malware stiehlt Daten und steuert Webcam ***
---------------------------------------------
Backdoor verbirgt sich in Fake-App "EasyDoc", die auf Download-Seiten angeboten wird
---------------------------------------------
http://derstandard.at/2000040542729



*** Cisco Prime Infrastructure Administrative Web Interface HTML Injection Vulnerability ***
---------------------------------------------
A vulnerability in the administrative web interface of Cisco Prime Infrastructure (PI) could allow an authenticated, remote attacker to execute arbitrary commands on the affected system and on the devices managed by the system. ...
Cisco has not released software updates that address this vulnerability. Workarounds that mitigate this vulnerability are not available.
---------------------------------------------
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160706-pi




*** IBM Security Bulletins ***
---------------------------------------------
*** IBM Security Bulletin: IBM SDK for Node.js may be affected by CVE-2016-1669 ***
http://www.ibm.com/support/docview.wss?uid=swg21986383
---------------------------------------------
*** IBM Security Bulletin: IBM SDK for Node.js may be affected by CVE-2014-9748 ***
http://www.ibm.com/support/docview.wss?uid=swg21986384
---------------------------------------------
*** IBM Security Bulletin: Vulnerability in ntp affects IBM Integrated Management Module II (IMM2) for System x, Flex and BladeCenter systems (CVE-2015-5219) ***
https://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5099409
---------------------------------------------
*** IBM Security Bulletin: Lotus Protector for Mail Security Affected By Multiple Open Source NTP Vulnerabilities. ***
http://www-01.ibm.com/support/docview.wss?uid=swg21986167
---------------------------------------------
*** IBM Security Bulletin: Lotus Mail Security Affected By Multiple Open Source XMLsoft Libxml2 Vulnerabilities (CVE-2016-4447, CVE-2016-4448, CVE-2016-4449) ***
http://www-01.ibm.com/support/docview.wss?uid=swg21986391
---------------------------------------------
*** IBM Security Bulletin: A vulnerability in the Apache Xerces-C XML parser affects IBM Cognos Metrics Manager (CVE-2016-0729) ***
http://www.ibm.com/support/docview.wss?uid=swg21986259
---------------------------------------------
*** IBM Security Bulletin: Content Manager OnDemand for Multiplatforms is affected by Open Source Apache Xerces-C XML parser Vulnerabilities (CVE-2016-0729) ***
http://www.ibm.com/support/docview.wss?uid=swg21985363
---------------------------------------------
*** IBM Security Bulletin: A vulnerability in OpenSSL affects IBM Cognos Metrics Manager (CVE-2016-2106, CVE-2016-2107, CVE-2016-2108) ***
http://www.ibm.com/support/docview.wss?uid=swg21977114
---------------------------------------------
*** IBM Security Bulletin: Vulnerabilities in OpenSSL affect IBM Security Virtual Server Protection for VMware (CVE-2016-2176) ***
http://www-01.ibm.com/support/docview.wss?uid=swg21986313
---------------------------------------------
*** IBM Security Bulletin: Multiple Vulnerabilities in OpenSSL affect IBM Sterling Connect:Express for Unix ***
http://www-01.ibm.com/support/docview.wss?uid=swg21986123
---------------------------------------------




More information about the Daily mailing list