End-of-Day report
Timeframe: Freitag 19-10-2018 18:00 - Montag 22-10-2018 18:00
Handler: Stephan Richter
Co-Handler: n/a
News
Remote Code Execution Flaws Found in FreeRTOS - Popular OS for Embedded Systems
FreeRTOS, the open-source operating system that powers most of the small microprocessors and microcontrollers in smart homes and critical infrastructure systems has 13 vulnerabilities, a third of them allowing remote code execution.
https://www.bleepingcomputer.com/news/security/remote-code-execution-flaws-found-in-freertos-popular-os-for-embedded-systems/
Sicherheitsupdate: Ein Klick zu viel und Microsoft Yammer führt Schadcode aus
Es gibt einen wichtigen Patch für die Desktop-Anwendung von Yammer.
http://heise.de/-4198055
Jetzt patchen! Kritische Lücke in den Mediaplayern VLC und MPlayer
Angreifer könnten Nutzer der Medienabspieler VLC und MPlayer mit vergleichsweise wenig Aufwand attackieren.
http://heise.de/-4198129
l+f: Snackautomaten-Flatrate
Ein Sicherheitsforscher wird zum Snackosaurus.
http://heise.de/-4198336
TCP/IP, Sockets, and SIGPIPE
There is a spectre haunting the Internet - the spectre of SIGPIPE errors. Its a bug in the original design of Unix networking from 1981 that is perpetuated by college textbooks, which teach students to ignore it. As a consequence, sometimes software unexpectedly crashes. This is particularly acute on industrial and medical networks, where security professionals cant run port/security scans for fear of crashing critical devices.
https://blog.erratasec.com/2018/10/tcpip-sockets-and-sigpipe.html
Warnung vor verda-maehroboter.de
Der betrügerische Online-Shop verda-maehroboter.de verkauft günstige Mähroboter und Rasentraktoren. Wer bei ihm einkauft, verliert sein Geld und seine Identität an Verbrecher/innen. Zu einer Warenlieferung kommt es nicht. Der Fake-Shop verda-maehroboter.de ist mithilfe einer Internetrecherche, eines Preisvergleichs und einer Überprüfung der Zahlungsmethoden erkennbar.
https://www.watchlist-internet.at/news/warnung-vor-verda-maehroboterde/
Let's talk about PAKE
The first rule of PAKE is: nobody ever wants to talk about PAKE. The second rule of PAKE is that this is a shame, because PAKE - which stands for Password Authenticated Key Exchange - is actually one of the most useful technologies that (almost) never gets used. It should be deployed everywhere, and yet it isn't.
https://blog.cryptographyengineering.com/2018/10/19/lets-talk-about-pake/
Vulnerabilities
libssh Authentication Bypass Vulnerability Affecting Cisco Products: October 2018
A vulnerability in libssh could allow an unauthenticated, remote attacker to bypass authentication on a targeted system.The vulnerability is due to improper authentication operations by the server-side state machine of the affected software. An attacker could exploit this vulnerability by presenting a SSH2_MSG_USERAUTH_SUCCESS message to a targeted system. A successful exploit could allow the attacker to bypass authentication and gain unauthorized access to a targeted system.
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20181019-libssh
SECURITY BULLETIN: Trend Micro Antivirus for Mac (Consumer) Privilege Escalation Vulnerabilities
Trend Micro has released fixes for the Trend Micro Antivirus for Mac family of consumer products which resolve vulnerabilities that could allow an attacker to escalate privileges on a vulnerable system that they otherwise would not have had access to.
https://esupport.trendmicro.com/en-US/home/pages/technical-support/1121296.aspx
Security updates for Monday
Security updates have been issued by Arch Linux (thunderbird), Debian (drupal7, exiv2, and ghostscript), Fedora (apache-commons-compress, git, libssh, and patch), Mageia (389-ds-base, calibre, clamav, docker, ghostscript, glib2.0, libtiff, mgetty, php-smarty, rust, tcpflow, and vlc), openSUSE (Chromium, icinga, and libssh), and SUSE (clamav, fuse, GraphicsMagick, haproxy, libssh, thunderbird, tomcat, udisks2, and Xerces-c).
https://lwn.net/Articles/769163/
IBM Security Bulletin: IBM SDK, Java Technology Edition Quarterly CPU - Jul 2018 - Includes Oracle Jul 2018 CPU affects IBM Tivoli Composite Application Manager for Transactions
https://www-01.ibm.com/support/docview.wss?uid=ibm10735807
IBM Security Bulletin: Vulnerabilities in GNU binutils affect IBM Netezza Analytics
http://www.ibm.com/support/docview.wss?uid=ibm10733785
BIG-IP-reflected XSS vulnerability in an undisclosed Configuration utility page CVE-2018-15315
https://support.f5.com/csp/article/K41704442
PEPPERL+FUCHS ecom Mobile devices prone to Android privilege elevation vulnerability
https://cert.vde.com/de-de/advisories/vde-2018-016