Timeframe: Freitag 12-09-2014 18:00 − Montag 15-09-2014 18:00
Handler: Robert Waldner
Co-Handler: Alexander Riepl
Squid Off-by-One in snmpHandleUdp() Lets Remote Users Execute Arbitrary Code
A remote user can send a specially crafted UDP SNMP packet to trigger an off-by-one memory error in snmpHandleUdp() and potentially execute arbitrary code on the target system.
http://www.securitytracker.com/id/1030838
Rooted SSH/SFTP Daemon Default Login Credentials
The software comes pre-configured with a default login of User: root Password: abc123. This weak password
would easily be guessed leading to root compromise of the android system.
http://cxsecurity.com/issue/WLB-2014090066
WordPress Photo Album Plus 5.4.4 Cross Site Scripting
This blog post is another in the series demonstrating current insecurities in devices categorised as the 'Internet of Things'. This instalment will reveal how the firmware on Canon Pixma printers (used in the home and by SMEs) can be modified from the Internet to run custom code. ... For demonstration purposes I decided to get Doom running on the printer (Doom as in the classic 90s computer game).
http://www.contextis.co.uk/resources/blog/hacking-canon-pixma-printers-doomed-encryption/
[Honeypot Alert] New Bot Malware (BoSSaBoTv2) Attacking Web Servers Discovered
Our web honeypots picked up some interesting attack traffic. The initial web application attack vector (PHP-CGI vulnerability) is not new, the malware payload is. We wanted to get this information out to the community quickly due to the following combined threat elements - Active exploit attempts to upload/install the malware The overall low detection rates among AV vendors The malware is actively being sold in underground ..
http://blog.spiderlabs.com/2014/09/honeypot-alert-bossabotv2-irc-botnetbitcoin-mining-analysis.html