End-of-Shift report
Timeframe: Dienstag 05-07-2016 18:00 − Mittwoch 06-07-2016 18:00
Handler: Robert Waldner
Co-Handler: n/a
EU-Parlament beschließt Cybersicherheitsgesetz mit Meldepflicht
Die europäischen Abgeordneten haben den lange umstrittenen Richtlinienentwurf zur Netz- und Informationssicherheit verabschiedet. Damit kommen auf größere Online-Anbieter und Betreiber kritischer Infrastrukturen Auflagen zu.
http://heise.de/-3258129
Encryption Bypass Vulnerability Impacts Half of Android Devices
More than half of Android devices are vulnerable to encryption bypass attack, say researchers.
http://threatpost.com/encryption-bypass-vulnerability-impacts-half-of-android-devices/119039/
Nasty BIOS bug slugs Gigabyte, hackers say
Vendors queue for punishment as ThinkPwn fallout spreads Gigabyte has been swept into turmoil surrounding low-level security vulnerabilities that allows attackers to kill flash protection, secure boot, and tamper with firmware on PCs by Lenovo and other vendors.
http://go.theregister.com/feed/www.theregister.co.uk/2016/07/06/nasty_bios_bug_slugs_gigabyte_hackers_say/
HP sichert Router gegen Fremdzugriffe ab
Hewlett Packard Enterprise versorgt einige Netzwerk-Produkte mit Sicherheitsupdates für zum Teil zwei Jahre alten Lücken.
http://heise.de/-3256913
Security Advisory - Multiple Vulnerabilities in OpenSSL in May 2016
CVE-2016-2108, CVE-2016-2107, CVE-2016-2106, CVE-2016-2105, CVE-2016-2109, CVE-2016-2176
Huawei has released software updates to fix this vulnerability.
http://www.huawei.com/en/psirt/security-advisories/2016/huawei-sa-20160706-01-openssl-en
Android-App verrät auch WLAN-Passwörter von A1-Routern
Mit der Android-App RouterKeygen lassen sich auch WLAN-Passwörter von A1-Routern auslesen. Betroffen sind alte Router-Modelle aus dem Jahr 2011.
http://futurezone.at/digital-life/android-app-verraet-auch-wlan-passwoerter-von-a1-routern/208.291.990
Rexroth Bosch BLADEcontrol-WebVIS Vulnerabilities
This advisory provides mitigation details for an SQL injection vulnerability and a cross-site scripting vulnerability in the Rexroth Bosch BLADEcontrol-WebVIS.
https://ics-cert.us-cert.gov/advisories/ICSA-16-187-01
"Elanor": Getarnte Mac-Malware stiehlt Daten und steuert Webcam
Backdoor verbirgt sich in Fake-App "EasyDoc", die auf Download-Seiten angeboten wird
http://derstandard.at/2000040542729
Cisco Prime Infrastructure Administrative Web Interface HTML Injection Vulnerability
A vulnerability in the administrative web interface of Cisco Prime Infrastructure (PI) could allow an authenticated, remote attacker to execute arbitrary commands on the affected system and on the devices managed by the system. ...
Cisco has not released software updates that address this vulnerability. Workarounds that mitigate this vulnerability are not available.
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160706-pi
IBM Security Bulletins
IBM Security Bulletin: IBM SDK for Node.js may be affected by CVE-2016-1669
http://www.ibm.com/support/docview.wss?uid=swg21986383
IBM Security Bulletin: IBM SDK for Node.js may be affected by CVE-2014-9748
http://www.ibm.com/support/docview.wss?uid=swg21986384
IBM Security Bulletin: Vulnerability in ntp affects IBM Integrated Management Module II (IMM2) for System x, Flex and BladeCenter systems (CVE-2015-5219)
https://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5099409
IBM Security Bulletin: Lotus Protector for Mail Security Affected By Multiple Open Source NTP Vulnerabilities.
http://www-01.ibm.com/support/docview.wss?uid=swg21986167
IBM Security Bulletin: Lotus Mail Security Affected By Multiple Open Source XMLsoft Libxml2 Vulnerabilities (CVE-2016-4447, CVE-2016-4448, CVE-2016-4449)
http://www-01.ibm.com/support/docview.wss?uid=swg21986391
IBM Security Bulletin: A vulnerability in the Apache Xerces-C XML parser affects IBM Cognos Metrics Manager (CVE-2016-0729)
http://www.ibm.com/support/docview.wss?uid=swg21986259
IBM Security Bulletin: Content Manager OnDemand for Multiplatforms is affected by Open Source Apache Xerces-C XML parser Vulnerabilities (CVE-2016-0729)
http://www.ibm.com/support/docview.wss?uid=swg21985363
IBM Security Bulletin: A vulnerability in OpenSSL affects IBM Cognos Metrics Manager (CVE-2016-2106, CVE-2016-2107, CVE-2016-2108)
http://www.ibm.com/support/docview.wss?uid=swg21977114
IBM Security Bulletin: Vulnerabilities in OpenSSL affect IBM Security Virtual Server Protection for VMware (CVE-2016-2176)
http://www-01.ibm.com/support/docview.wss?uid=swg21986313
IBM Security Bulletin: Multiple Vulnerabilities in OpenSSL affect IBM Sterling Connect:Express for Unix
http://www-01.ibm.com/support/docview.wss?uid=swg21986123