Category

Vulnerability

Cisco Backdoor Account & Other Critical Vulnerabilities

Hello, Very recently Cisco announced 3 “critical risk” and numerous other “high risk” vulnerabilities. One of those vulnerabilities affect IOS XE devices which come with a default pre-configured privileged account which if known could grant easy access to the device by an attacker. Some sources say that this made its way by mistake from testing...
Read More

Security Alert: Processors Meltdown!

Hello, Recently multiple disclosed security vulnerabilities took the Internet by storm. Dubbed “Meldown” and “Spectre”, those vulnerabilities seem to affect numerous systems and processors including Intel, AMD, ARM; thus it has the potential to affect PCs, servers, networking equipment, mobile devices and even cloud. An attacker can exploit those vulnerabilities by running a special code...
Read More

Wifi is no Longer Secure – WPA2 got KRACKed !

On October 16, 2017, Mathy Vanhoef and Frank Piessens of imec-DistriNet published a paper detailing their discovery of security weaknesses in WPA2. WPA2 (Wi-Fi Protected Access II) is a widely used security protocol developed by the Wi-Fi Alliance for the purpose of  encrypting and securing the traffic on Wi-fi connections between the Wi-fi router and endpoints. WPA2...
Read More

Security Alert: Cisco ASA SNMP Remote Code Execution Vulnerability (CVE-2016-6366)

Hello, Very recently, a new security vulnerability affecting Cisco ASA & Firepower was discovered. Below are the short details: Background: A vulnerability in the Simple Network Management Protocol (SNMP) code of Cisco Adaptive Security Appliance (ASA) Software could allow an authenticated, remote attacker to cause a reload of the affected system or to remotely execute...
Read More

Multiple Cisco Security Vulnerabilities (ASA, CUCM, WLC, etc.)

Hello, On April 20th, Cisco released multiple advisories detailing security vulnerabilities that affect a wide range of their products including ASA firewall, Unified Communications Manager (CUCM), WLC and more. The vulnerabilities, if exploited, would allow an attacker to launch a denial-of-service (DoS) attack on the device, possibly resulting in service disruption. The vulnerabilities details and remedies...
Read More

DROWN Attack (CVE-2016-0800), Turing Award and Leo’s Oscar

Hello, A new security vulnerability (“DROWN“: Decrypting RSA with Obsolete and Weakened eNcryption) affecting OpenSSL was disclosed yesterday which allows an attacker to decrypt secure TLS sessions and steal sensitive data such as passwords and credit cards information. All applications that rely on TLS protocol (like websites and email) are therefore affected. The vulnerability (id:...
Read More

Security Alert: Glibc Buffer Overflow (CVE-2015-7547)

Hello,   Following our previous communication concerning the announcements of OpenSSL vulnerability (CVE-2016-0701) and Cisco’s ASA IKE Buffer Overflow (CVE-2016-1287), a new security vulnerability surfaced which targets systems that use the “GNU Library C (glbic)” (including Cisco, Juniper and many others). “The glibc DNS client side resolver is vulnerable to a stack-based buffer overflow when...
Read More

Logjam Security Vulnerability (CVE-2015-4000)

Following the continuous revealing of security vulnerabilities with the most unimaginable names such as “Shellshock” (CVE-2014-6271 and CVE-2014-7169), “POODLE” (CVE-2014-3566), “POODLE 2.0” (CVE-2014-8730) and “GHOST” (CVE-2015-0235) affecting SSL, TLS and other widely-used security protocols, it was just a matter of time until the curtain rolled revealing the latest security vulnerability this time affecting Diffie-Hellman algorithm for...
Read More