SysAdmin 24x7
Открыть в Telegram
Noticias y alertas de seguridad informática. Chat y contacto: t.me/sysadmin24x7chat
Больше4 391
Подписчики
+124 часа
+37 дней
-330 день
Архив постов
4 391
Próximas Cons
—---------------------------—
Sh3llcon 25-27 Ene (Santander)
Ciberseg 25-26 Ene (Madrid)
H-C0N 2-3 Feb (Madrid)
Hackron 9 Feb (Tenerife)
Rooted 1-2-3 Mar (Madrid)
FaqIn 1-2-3 Mar (Madrid)
4 391
Intel AMT Security Issue Lets Attackers Bypass BIOS and BitLocker Passwords
https://www.bleepingcomputer.com/news/security/intel-amt-security-issue-lets-attackers-bypass-bios-and-bitlocker-passwords/
4 391
Múltiples vulnerabilidades en Juniper Networks Junos
Fecha de publicación: 12/01/2018
Importancia: 5 - Crítica
Recursos afectados:
Se han visto afectadas las siguietes versiones de Juniper Networks Junos OS:
12.1X46 versiones anteriores a 12.1X46-D67
12.1X46 versiones anteriores a12.1X46-D60 en SRX series
12.3 versiones anteriores a 12.3R12-S5
12.3X48 versiones anteriores a 12.3X48-D35
12.1X46 versiones anteriores a 12.1X46-D71
12.3 versiones anteriores a 12.3R12-S7
12.3X48 versiones anteriores a 12.3X48-D55
12.3X48 versiones anteriores a12.3X48-D35 en SRX series
14.1 versiones anteriores a 14.1R8-S5, 14.1R9
14.1 versiones anteriores a 14.1R9 on MX series
14.1X53 versiones anteriores a 14.1X53-D44, 14.1X53-D50
14.1X53 versiones anteriores a 14.1X53-D40
14.2 versiones anteriores a 14.2R7-S7, 14.2R8
14.2 versiones anteriores a 14.2R8 on MX series
14.1 versiones anteriores a 14.1R8-S5, 14.1R9
14.1X53 versiones anteriores a 14.1X53-D46, 14.1X53-D50, 14.1X53-D107
14.2 versiones anteriores a 14.2R7-S9, 14.2R8
15.1 versiones anteriores a 15.1R3;15.1X49 versiones anteriores a 15.1X49-D30
15.1X49 versiones anteriores a 15.1X49-D60 en SRX series;15.1X53 versiones anteriores a 15.1X53-D70
15.1 versiones anteriores a 15.1R5-S8, 15.1F6-S9, 15.1R6-S4, 15.1R7 on MX series
15.1 versiones anteriores a 15.1F2-S17, 15.1F5-S8, 15.1F6-S8, 15.1R5-S7, 15.1R7
15.1X49 versiones anteriores a to 15.1X49-D90
15.1X53 versiones anteriores a 15.1X53-D65
15.1X53 versiones anteriores a 15.1X53-D55
15.1 versiones anteriores a 15.1R7
16.1 versiones anteriores a 16.1R6 on MX series
16.2 versiones anteriores a 16.2R3 on MX series
16.1 versiones anteriores a 16.1R4-S6, 16.1R5
16.1X65 versiones anteriores a 16.1X65-D45
16.2 versiones anteriores a 16.2R2
17.1 versiones anteriores a 17.1R2-S4, 17.1R3 on MX series.17.1 versiones anteriores a 17.1R2.
Descripción:
Se han descubierto cuatro vulnerabilidades en Juniper Networks Junos OS de las que se encuentran una crítica y tres de de criticidad alta.
https://www.certsi.es/alerta-temprana/avisos-seguridad/multiples-vulnerabilidades-juniper-networks-junos
4 391
Current status for Debian kernel for modern intel cpu security flaw
- meltdown: https://security-tracker.debian.org/tracker/CVE-2017-5754
- spectre: https://security-tracker.debian.org/tracker/CVE-2017-5753 https://security-tracker.debian.org/tracker/CVE-2017-5715
4 391
Vulnerabilidades en NAS Western Digital MyCloud
http://unaaldia.hispasec.com/2018/01/vulnerabilidades-en-nas-western-digital.html
4 391
Ejecución remota de código en AMD Secure Processor
http://unaaldia.hispasec.com/2018/01/ejecucion-remota-de-codigo-en-amd.html
4 391
Los servidores con CentOS 6 no arrancan después de actualizarse al kernel de Linux más reciente (kernel-2.6.32-696.18.7.el6.x86_64)
El error ha sido marcado por el CentOS Project (https://bugs.centos.org/view.php?id=14336)
4 391
VMSA-2018-0001
vSphere Data Protection (VDP) updates address multiple security issues.
VMware Security AdvisoryAdvisory ID: VMSA-2018-0001
VMware Security AdvisorySeverity: Critical
VDP contains an authentication bypass vulnerability.⚠️
A remote unauthenticated malicious user can potentially bypass application authentication and gain unauthorized root access to the affected systems.
https://www.vmware.com/security/advisories/VMSA-2018-0001.html
4 391
macOS Bug Lets Local Admin Unlock App Store System Prefs With Any Password
https://www.bleepingcomputer.com/news/apple/macos-bug-lets-local-admin-unlock-app-store-system-prefs-with-any-password/
4 391
Kali on the Windows Subsystem for Linux
https://www.kali.org/tutorials/kali-on-the-windows-subsystem-for-linux/
4 391
#Wireshark 2.4.4 has been released. Enjoy.
https://www.wireshark.org/docs/relnotes/wireshark-2.4.4.html
4 391
First of a few remote code execution flaws in various popular torrent clients, here is a DNS rebinding vulnerability Transmission, resulting in arbitrary remote code execution.
mitigate dns rebinding attacks against daemon
https://github.com/transmission/transmission/pull/468
4 391
Los servidores con CentOS 6 no arrancan después de actualizarse al kernel de Linux más reciente (kernel-2.6.32-696.18.7.el6.x86_64)
El error ha sido marcado por el CentOS Project (https://bugs.centos.org/view.php?id=14336)
4 391
Múltiples vulnerabilidades en productos VMware
Fecha de publicación: 11/01/2018
Importancia: 5 - Crítica
Recursos afectados:
Workstation 14.X
Fusion 10.X y 8.X
https://www.certsi.es/alerta-temprana/avisos-seguridad/multiples-vulnerabilidades-productos-vmware-7
4 391
Understanding the performance impact of Spectre and Meltdown mitigations on Windows Systems
https://cloudblogs.microsoft.com/microsoftsecure/2018/01/09/understanding-the-performance-impact-of-spectre-and-meltdown-mitigations-on-windows-systems/
4 391
Rockwell Automation Patches Serious Flaw in MicroLogix 1400 PLC
http://www.securityweek.com/rockwell-automation-patches-serious-flaw-micrologix-1400-plc
4 391
IBM Starts Patching Spectre, Meltdown Vulnerabilities
IBM has started releasing firmware patches for its POWER processors to address the recently disclosed Meltdown and Spectre vulnerabilities. The company is also working on updates for its operating systems, but those are expected to become available only next month.
http://www.securityweek.com/ibm-starts-patching-spectre-meltdown-vulnerabilities
4 391
