Cisco Security Advisory – The Cisco IOS Software implementation of the Common Industrial Protocol (CIP) feature contains denial of service and memory leak vulnerabilities. Cisco has released free software updates that address these vulnerabilities.
Monthly Archives: March 2015
Cisco Security Advisory 20150325-wedge
Cisco Security Advisory – A vulnerability within the virtual routing and forwarding (VRF) subsystem of Cisco IOS software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. The vulnerability is due to a failure to properly process malicious ICMP version 4 (ICMPv4) messages received on a VRF-enabled interface. An attacker could exploit this vulnerability by submitting ICMPv4 messages designed to trigger the vulnerability on an affected device. When the ICMPv4 messages are processed, the packet queue of the affected interface may not be cleared, leading to a queue wedge. When a wedge occurs, the affected device will stop processing any additional packets received on the wedged interface. Cisco has released free software updates that address this vulnerability. Workarounds that mitigate this vulnerability are not available.
Cisco Security Advisory 20150325-mdns
Cisco Security Advisory – A vulnerability in the multicast DNS (mDNS) gateway function of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to reload the vulnerable device. The vulnerability is due to improper validation of mDNS packets. An attacker could exploit this vulnerability by sending malformed IP version 4 (IPv4) or IP version 6 (IPv6) packets on UDP port 5353. An exploit could allow the attacker to cause a denial of service (DoS) condition. Cisco has released free software updates that address this vulnerability.
Realms Wiki Insecure Transport
Realms Wiki uses insecure transport during install and due to this an attacker in a privileged position could achieve remote code execution.
Realms Wiki Cross Site Request Forgery
Realms Wiki suffers from a cross site request forgery vulnerability.
Mini-Stream Ripper 2.7.7.100 Buffer Overflow
Mini-Stream Ripper version 2.7.7.100 local buffer overflow exploit with message box shellcode.
WSO2 Identity Server 4.5.0 / 4.6.0 / 5.0.0 Bypass / Cross Site Scripting
WSO2 Identity Server versions 4.5.0, 4.6.0, and 5.0.0 suffer from authentication bypass and cross site scripting vulnerabilities.
Remote Code Execution in Realms Wiki install.sh
Posted by Javantea on Mar 25
Remote Code Execution in realms-wiki install.sh
by Javantea
Mar 15, 2015
Product: Realms Wiki
Website: http://realms.io/
Github: https://github.com/scragg0x/realms-wiki
CVSS Score: 7.9 (AV:A/AC:M/Au:N/C:C/I:C/A:C)
On line 20 of realms-wiki install.sh, a GPG key that is requested via HTTP is added to the apt keyring. A remote
attacker that has a man-in-the-middle (via ARP spoof, DNS spoof, or HTTP man-in-the-middle) against the person…
Announcing NorthSec 2015 – Montreal, May 21-24
Posted by Pierre-David / NorthSec Conference on Mar 25
www.nsec.io – northsec.eventbrite.ca
NorthSec 2015, one of the biggest applied security event in Canada,
coming up in Montreal May 21-24, with a 2-day technical conference
followed by a 48h on-site CTF.
The full line-up of speakers has been announced at
https://www.nsec.io/speakers featuring :
* KEYNOTE, from Chris Prince of the Office of the Privacy Comissioner of
Canada, here to talk about Privacy, Surveillance & Oversight.
* Joan…
CSRF in Realms Wiki
Posted by Javantea on Mar 25
CSRF in Realms Wiki
Vulnerability Report
Mar 19, 2015
Product: Realms Wiki
Website: http://realms.io/
Github: https://github.com/scragg0x/realms-wiki
CVSS Score: 7.8 (AV:N/AC:L/Au:N/C:N/I:C/A:N)
Realms Wiki is vulnerable to Cross-Site Request Forgery on all posts. Especially of concern are New, Edit, and Revert.
If Realms Wiki had significant authentication mechananisms such as site administration, user administration, and so
forth, these…