[CERT-daily] Tageszusammenfassung - 16.11.2018
Daily end-of-shift report
team at cert.at
Fri Nov 16 18:06:38 CET 2018
=====================
= End-of-Day report =
=====================
Timeframe: Donnerstag 15-11-2018 18:00 − Freitag 16-11-2018 18:00
Handler: Stephan Richter
Co-Handler: n/a
=====================
= News =
=====================
∗∗∗ Serverüberwachungssoftware Nagios XI: Mehrere Schlupflöcher für Angreifer ∗∗∗
---------------------------------------------
Nagios XI ist angreifbar und gefährdet IT-Infrastrukturen. Eine abgesicherte Version ist verfügbar.
---------------------------------------------
http://heise.de/-4222806
∗∗∗ Warnung vor Gelenkcreme Artrovex ∗∗∗
---------------------------------------------
Kriminelle geben sich als Bundesministerium für Arbeit, Soziales, Gesundheit und Konsumentenschutz aus und behaupten, dass die österreichische Regierung bei Gelenkschmerzen die Creme Artrovex empfiehlt. Das ist erfunden. Konsument/innen dürfen Artrovex nicht bestellen, denn die Creme hat keine medizinische Wirkung. Ebenso übermitteln Käufer/innen damit persönliche Daten an Unbekannte.
---------------------------------------------
https://www.watchlist-internet.at/news/warnung-vor-gelenkcreme-artrovex/
∗∗∗ tRat Emerges as New Pet for APT Group TA505 ∗∗∗
---------------------------------------------
The modular malware seems to be in a testing phase, but TA505s interest made researchers take note.
---------------------------------------------
https://threatpost.com/trat-emerges-as-new-pet-for-apt-group-ta505/139136/
∗∗∗ Lock-Screen Bypass Bug Quietly Patched in Handsets ∗∗∗
---------------------------------------------
The flaw in a high-end phones and up-and-coming handsets made by top OEMs allows hackers to bypass handset lock screens in seconds.
---------------------------------------------
https://threatpost.com/lock-screen-bypass-bug-quietly-patched-in-handsets/139141/
∗∗∗ Hacking Connected Home Alarm Systems – The Expensive [part 2] ∗∗∗
---------------------------------------------
TL;DR: We were wondering whether price affects the security of IoT appliances. So we verified the security of two differently priced connected home alarm systems. Both IoT alarms are marketed as an easy solution to protect your home. Unfortunately we find this not to be the case as we identified multiple critical vulnerabilities in both systems.
---------------------------------------------
https://blog.nviso.be/2018/11/15/hacking-connected-home-alarm-systems-the-expensive-part-2/
∗∗∗ 0-Day in ELBA5's Network Installation: Overtaking your company's bank account ∗∗∗
---------------------------------------------
This blog post is about a previously unknown critical vulnerability in the Austrian electronic banking application ELBA5. The issue discussed here could be abused to gain full control over any ELBA5 database server as well as the underlying operating system. It has a confirmed CVSSv3 score of 10.0.
---------------------------------------------
https://bogner.sh/2018/11/0-day-in-elba5s-network-installation-overtaking-your-companys-bank-account/
=====================
= Vulnerabilities =
=====================
∗∗∗ Security updates for Friday ∗∗∗
---------------------------------------------
Security updates have been issued by Fedora (lldpad, pdns, and php), Mageia (flash-player-plugin, gdal, mutt, patch, php-pear-CAS, postgresql9.4|6, ruby-rack, and teeworlds), SUSE (kernel-rt, postgresql10, and squid), and Ubuntu (openjdk-7).
---------------------------------------------
https://lwn.net/Articles/772259/
∗∗∗ Multiple critical vulnerabilities in Miss Marple Enterprise Edition ∗∗∗
---------------------------------------------
https://www.sec-consult.com/en/blog/advisories/multiple-critical-vulnerabilities-in-miss-marple-enterprise-edition/
∗∗∗ IBM Security Bulletin: Rational Build Forge Security Advisory for Apache Tomcat and Apache HTTP Server (CVE-2018-11763; CVE-2018-11784) ∗∗∗
---------------------------------------------
https://www.ibm.com/blogs/psirt/ibm-security-bulletin-rational-build-forge-security-advisory-for-apache-tomcat-and-apache-http-server-cve-2018-11763-cve-2018-11784/
∗∗∗ IBM Security Bulletin: A Security Vulnerability could affect IBM® Cloud Private (CVE-2018-1841) ∗∗∗
---------------------------------------------
https://www.ibm.com/blogs/psirt/ibm-security-bulletin-a-security-vulnerability-could-affect-ibm-cloud-private-cve-2018-1841/
∗∗∗ IBM Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Content Collector for Email, IBM Content Collector for File Systems, IBM Content Collector for SharePoint and IBM Content Collector for IBM Connections ∗∗∗
---------------------------------------------
https://www.ibm.com/blogs/psirt/ibm-security-bulletin-multiple-vulnerabilities-in-ibm-java-sdk-affect-ibm-content-collector-for-email-ibm-content-collector-for-file-systems-ibm-content-collector-for-sharepoint-and-ibm-content-col/
∗∗∗ IBM Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM Rational ClearCase (CVE-2018-1656, CVE-2018-12539) ∗∗∗
---------------------------------------------
https://www.ibm.com/blogs/psirt/ibm-security-bulletin-multiple-vulnerabilities-in-ibm-java-runtime-affect-ibm-rational-clearcase-cve-2018-1656-cve-2018-12539/
∗∗∗ IBM Security Bulletin: Multiple vulnerabilities in IBM Java SDK and IBM Java Runtime Version 8 SR4FP10 affect IBM Notes and Domino ∗∗∗
---------------------------------------------
https://www.ibm.com/blogs/psirt/ibm-security-bulletin-multiple-vulnerabilities-in-ibm-java-sdk-and-ibm-java-runtime-version-8-sr4fp10-affect-ibm-notes-and-domino/
∗∗∗ IBM Security Bulletin: A Security Vulnerability could affect IBM® Cloud Private (CVE-2018-10892) ∗∗∗
---------------------------------------------
https://www.ibm.com/blogs/psirt/ibm-security-bulletin-a-security-vulnerability-could-affect-ibm-cloud-private-cve-2018-10892/
∗∗∗ IBM Security Bulletin: Vulnerability in OpenSSL affects IBM Rational ClearCase (CVE-2018-0732) ∗∗∗
---------------------------------------------
https://www.ibm.com/blogs/psirt/ibm-security-bulletin-vulnerability-in-openssl-affects-ibm-rational-clearcase-cve-2018-0732/
--
CERT.at Daily mailing list
Listinfo: https://lists.cert.at/cgi-bin/mailman/listinfo/daily
More information about the Daily
mailing list