Posted by Apple Product Security on Aug 25
APPLE-SA-2016-08-25-1 iOS 9.3.5
iOS 9.3.5 is now available and addresses the following:
Kernel
Available for: iPhone 4s and later, iPad 2 and later, iPod touch (5th generation) and later
Impact: An application may be able to disclose kernel memory
Description: A validation issue was addressed through improved input sanitization.
CVE-2016-4655: Citizen Lab and Lookout
Kernel
Available for: iPhone 4s and later, iPad 2 and later, iPod touch (5th…
JD Edwards 9.1 EnterpriseOne Server suffers from a JDENET function denial of service vulnerability.
Traditional hardware 2FA tokens are increasingly being replaced by “soft” tokens – software OTP generators packaged into regular smartphone apps that run on iOS or Android. This is more convenient for users but also exposes the tokens to attacks by mobile malware and manual attacks. To compensate for these risks, many software token vendor apply a combination of obfuscation, anti-tampering, and cryptography. The question is, how effective are these measures in protecting the users’ data? In this paper, the author shows different kinds of attacks that can be used to reverse engineer OTP algorithms and extract the stored secrets. Techniques range from classical static and dynamic analysis to custom kernel sandboxes and full-system emulation. The author demonstrates proof-of-concept exploits for current soft tokens of major vendors, and explain methods of assessing the effectiveness of a given set of obfuscation.
Cross-site request forgery (CSRF) vulnerability in Roundcube Webmail before 1.1.5 allows remote attackers to hijack the authentication of users for requests that download attachments and cause a denial of service (disk consumption) via unspecified vectors.
Kaspersky Safe Browser iOS before 1.7.0 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to obtain sensitive information via a crafted certificate.
Posted by Onapsis Research on Aug 25
Onapsis Security Advisory ONAPSIS-2016-00171: JD Edwards Server Manager Password Disclosure
1. Impact on Business
=====================
By exploiting this vulnerability an unauthenticated attacker could retrive the administration user and passwords from
the Server Manager compromising the whole JDE landscape hence all of its information and processes.
Risk Level: Critical
2. Advisory Information
=======================
– Public Release Date:…
Posted by Onapsis Research on Aug 25
Onapsis Security Advisory ONAPSIS-2016-014: JD Edwards JDENET function DoS
1. Impact on Business
=====================
By exploiting this vulnerability an unauthenticated attacker could remotely shutdown the entire JD Edwards
infrastructure.
Risk Level: High
2. Advisory Information
=======================
– Public Release Date: 07/28/2016
– Last Revised: 07/28/2016
– Security Advisory ID: ONAPSIS-2016-014
– Onapsis SVS ID: ONAPSIS-00175
-…
Posted by Onapsis Research on Aug 25
Onapsis Security Advisory ONAPSIS-2016-012: JD Edwards JDENET function DoS
1. Impact on Business
=====================
By exploiting this vulnerability an unauthenticated attacker could remotely shutdown the entire JD Edwards
infrastructure.
Risk Level: High
2. Advisory Information
=======================
– Public Release Date: 07/28/2016
– Last Revised: 07/28/2016
– Security Advisory ID: ONAPSIS-2016-012
– Onapsis SVS ID: ONAPSIS-00176
-…
Posted by Onapsis Research on Aug 25
Onapsis Security Advisory ONAPSIS-2016-011: JD Edwards Server Manager Create users
1. Impact on Business
=====================
By exploiting this vulnerability an unauthenticated attacker could create users in the Server Manager, ultimately
compromising the whole JDE landscape hence all of its information and processes.
Risk Level: Critical
2. Advisory Information
=======================
– Public Release Date: 07/28/2016
– Last Revised:…
Posted by Onapsis Research on Aug 25
Onapsis Security Advisory ONAPSIS-2016-010: JD Edwards Server Manager Shutdown
1. Impact on Business
=====================
By exploiting this vulnerability an unauthenticated attacker could Shutdown the Server Manager
Risk Level: Medium
2. Advisory Information
=======================
– Public Release Date: 07/28/2016
– Last Revised: 07/28/2016
– Security Advisory ID: ONAPSIS-2016-010
– Onapsis SVS ID: ONAPSIS-00173
– CVE: CVE-2016-0421
-…