SysAdmin 24x7

Cisco IOS XR Software DVMRP Memory Exhaustion Vulnerabilities First Published: 2020 August 29 03:00 GMT Last Updated: 2020 August 31 21:32 GMT Version 2.0:Interim Workarounds: No workarounds available Cisco Bug IDs: CSCvr86414  CSCvv54838 CVE-2020-3566 CVE-2020-3569 CWE-400 CVSS Score:Base 8.6 https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxr-dvmrp-memexh-dSmpdvfz

CVE-2020-3566 Detail CNA:  Cisco Systems, Inc. Base Score: 8.6 HIGH Description A vulnerability in the Distance Vector Multicast Routing Protocol (DVMRP) feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to exhaust process memory of an affected device. The vulnerability is due to insufficient queue management for Internet Group Management Protocol (IGMP) packets. An attacker could exploit this vulnerability by sending crafted IGMP traffic to an affected device. A successful exploit could allow the attacker to cause memory exhaustion, resulting in instability of other processes. These processes may include, but are not limited to, interior and exterior routing protocols. Cisco will release software updates that address this vulnerability. https://nvd.nist.gov/vuln/detail/CVE-2020-3566

Cisco Releases Security Updates Cisco has released security updates to address vulnerabilities in Cisco products. An attacker could exploit some of these vulnerabilities to take control of an affected system. For updates addressing lower severity vulnerabilities see the Cisco Security Advisories page.   The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the following Cisco Advisories and apply the necessary updates: Cisco FXOS and NX-OS Software Cisco Fabric Services Denial of Service Vulnerability cisco-sa-fxos-nxos-cfs-dos-dAmnymbd Cisco Nexus 3000 and 9000 Series Switches Privilege Escalation Vulnerability cisco-sa-n3n9k-priv-escal-3QhXJBC Cisco NX-OS Software Data Management Engine Remote Code Execution Vulnerability cisco-sa-nxos-dme-rce-cbE3nhZS Cisco NX-OS Software Border Gateway Protocol Multicast VPN Session Denial of Service Vulnerability cisco-sa-nxosbgp-mvpn-dos-K8kbCrJp Cisco NX-OS Software Border Gateway Protocol Multicast VPN Denial of Service Vulnerability cisco-sa-nxosbgp-nlri-dos-458rG2OQ https://us-cert.cisa.gov/ncas/current-activity/2020/08/27/cisco-releases-security-updates

Múltiples vulnerabilidades en Xen, Citrix Hypervisor y XenServer Fecha de publicación: 25/08/2020 Importancia: 4 - Alta Recursos afectados: Todas las versiones de Xen; Citrix Hypervisor 8.2 LTSR; Citrix Hypervisor 8.1; Citrix Hypervisor 8.0; Citrix XenServer 7.1 LTSR CU2; Citrix XenServer 7.0. Descripción: Se ha informado de varias vulnerabilidades que afectan a QEMU y que podrían permitir a un atacante la ejecución de código en una VM invitada con los privilegios del Proceso QEMU en el host o en una denegación de servicio (DoS) en el servicio. https://www.incibe-cert.es/alerta-temprana/avisos-seguridad/multiples-vulnerabilidades-xen-citrix-hypervisor-y-xenserver

Vulnerability Spotlight: Remote code execution, privilege escalation bugs in Microsoft Azure Sphere https://blog.talosintelligence.com/2020/08/vuln-spotlight-microsoft-azure-aug-2020.html

Debian Security Advisory DLA-2340-1 sqlite3 -- LTS security update https://www.debian.org/lts/security/2020/dla-2340

Seowon SlC 130 Router Remote Code Execution https://packetstormsecurity.com/files/158933/seowonsic130-exec.txt

Google Patches Email Spoofing Vulnerability After Public Disclosure https://www.securityweek.com/google-patches-email-spoofing-vulnerability-after-public-disclosure

How to use AWS Config to determine compliance of AWS KMS key policies to your specifications https://aws.amazon.com/es/blogs/security/how-to-use-aws-config-to-determine-compliance-of-aws-kms-key-policies-to-your-specifications/

ICS Medical Advisory (ICSMA-20-233-01) Philips SureSigns VS4 CVSS v3 6.3 ATTENTION: Exploitable remotely Vendor: Philips Equipment: SureSigns VS4 Vulnerabilities: Improper Input Validation, Improper Access Control, Improper Authentication https://us-cert.cisa.gov/ics/advisories/icsma-20-233-01

Microsoft Issues Emergency Security Updates for Windows 8.1 and Server 2012 R2 Microsoft has issued an emergency out-of-band software update for Windows 8.1, Windows RT 8.1, and Windows Server 2012 R2 systems to patch two new recently disclosed security vulnerabilities. Tracked as CVE-2020-1530 and CVE-2020-1537, both flaws reside in the Remote Access Service (RAS) in a way it manages memory and file operations and could let remote attackers gain elevated privileges after successful exploitation. https://thehackernews.com/2020/08/windows-update-download.html

Purple Cloud: despliega un lab de DA en la nube Purple Cloud de Jason Ostrom es una pequeña implementación de Active Directory automatizada con plantillas de playbooks en Terraform/Ansible para implementar en Azure; ideal para organizar y llevar a cabo un ciberejercicio de pentesting en AD. https://www.hackplayers.com/2020/08/purple-cloud-despliega-un-lab-de-directorio-activo.html

Experts Reported Security Bug in IBM's Db2 Data Management Software Cybersecurity researchers today disclosed details of a memory vulnerability in IBM's Db2 family of data management products that could potentially allow a local attacker to access sensitive data and even cause a denial of service attacks. The flaw (CVE-2020-4414), which impacts IBM Db2 V9.7, V10.1, V10.5, V11.1, and V11.5 editions on all platforms, is caused by improper usage shared memory, thereby granting a bad actor to perform unauthorized actions on the system. https://thehackernews.com/2020/08/ibm-data-management.html

Uso de credenciales por defecto en varios productos de Cisco Fecha de publicación: 20/08/2020 Importancia: 5 - Crítica Recursos afectados:  Esta vulnerabilidad afecta a los dispositivos de las series Cisco ENCS 5400-W y CSP 5000-W si ejecutan Cisco vWAAS con versiones 6.4.5 o 6.4.3d y anteriores de imágenes empaquetadas de NFVIS. Descripción:  Esta vulnerabilidad, que se encontró durante las pruebas de seguridad internas, posee una severidad crítica y es de tipo uso de credenciales por defecto y estáticas. https://www.incibe-cert.es/alerta-temprana/avisos-seguridad/uso-credenciales-defecto-varios-productos-cisco

Múltiples vulnerabilidades afectan al core de Jenkins Fecha de publicación: 18/08/2020 Importancia: 5 - Crítica Recursos afectados:  Jenkins hasta versión 2.251 inclusive; Jenkins LTS hasta versión 2.235.4 inclusive. Descripción:  Diversos investigadores han informado de múltiples vulnerabilidades que afectan al core de Jenkins, concretamente 1 es de severidad crítica y 3 altas, de tipo corrupción en el buffer y Cross-Site Scripting (XSS) almacenado, respectivamente. https://www.incibe-cert.es/alerta-temprana/avisos-seguridad/multiples-vulnerabilidades-afectan-al-core-jenkins

Múltiples vulnerabilidades en Apache Struts 2 Fecha de publicación: 17/08/2020 Importancia: 4 - Alta Recursos afectados:  Apache Struts 2, versiones desde 2.0.0 hasta 2.5.20. Descripción:  Matthias Kaiser, de Apple Information Security, y Takeshi Terada, de Mitsui Bussan Secure Directions Inc., han reportado 2 vulnerabilidades, de severidad alta y media, de tipo ejecución remota de código y denegación de servicio, respectivamente. Solución:  Apache Struts 2 a la versión 2.5.22. https://www.incibe-cert.es/alerta-temprana/avisos-seguridad/multiples-vulnerabilidades-apache-struts-2

Emotet Malware Returned with Massive Malspam Campaign Emotet is back with full swing, using stolen emails from previously compromised victims to infect recipient's with the malware. https://www.ehackingnews.com/2020/08/emotet-malware-returned-with-massive.html

A new Mac malware, tracked as XCSSET, spreads through Xcode projects and exploits two zero-day vulnerabilities, experts warn. https://securityaffairs.co/wordpress/107162/malware/xcsset-mac-malware.html

Alert (AA20-227A) Phishing Emails Used to Deploy KONNI Malware https://us-cert.cisa.gov/ncas/alerts/aa20-227a

Google Capture The Flag 2020 Prizes 13,337 USD for the first place 7,331 USD for the second place 3,133.7 USD for the third place The best write-ups will also have 100 and 500 USD prizes. In addition, there will be another virtual event (at a later time) that the top teams will be invited to participate for additional prizes. https://capturetheflag.withgoogle.com/