CVE-2019-5736 Exploits the Common runc Container Binary to Escape to Host
February 13, 2019CVE-2019-5736 allows for an escape to host attack in specific container configurations. Background A new vulnerability (CVE-2019-5736) was recently announced in runc, the runtime used by popula...
ThinkPHP Remote Code Execution Vulnerability Used To Deploy Variety of Malware (CVE-2018-20062)
February 7, 2019A remote code execution bug in the Chinese open source framework ThinkPHP is being actively used by threat actors to implant a variety of malware, primarily targeting Internet of Things (IoT) devices....
LibreOffice Vulnerable to Code Execution in URL Mouseover Preview Feature
February 1, 2019Researcher Alex Inführ discovered that LibreOffice 6.1.0-6.1.3.1 is susceptible to a code injection attack if a user hovers their mouse over a malicious URL. Background Researcher Alex Inführ&n...
Public Exploit Scripts for Vulnerable Cisco Small Business RV320 and RV325 Devices Now Available
January 25, 2019Availability of public exploit scripts for two vulnerabilities in Cisco Small Business WAN VPN routers coupled with incoming scans for vulnerable devices indicate that attackers are preparing to launc...
Apple iOS 12.1.3 Security Updates Address Multiple Vulnerabilities
January 23, 2019Apple has released iOS 12.1.3 to fix 31 CVEs including a FaceTime remote code execution vulnerability Background On January 22, Apple released iOS 12.1.3, which includes fixes for 31 different CVEs ...
Proof-of-Concept Code Gives Standard Microsoft Exchange Users Domain Administrator Privileges (CVE-2019-0724, CVE-2019-0686)
January 22, 2019Publicly released and newly named “PrivExchange” proof-of-concept (POC) privilege escalation code exploits protocol flaws and default configurations to give standard Exchange users Domain Administrato...
Oracle’s January Critical Patch Update Addresses Nearly 300 Fixes
January 15, 2019Oracle addresses nearly 300 vulnerabilities in the first Critical Patch Update of 2019. Background On January 15, Oracle released its Critical Patch Update, a quarterly publication of fixes for...
Critical Vulnerability Fixes Available For Juniper Devices
January 10, 2019Juniper has addressed multiple critical vulnerabilities in Junos, Junos Space, and JATP devices. Administrators are advised to update to the latest OS version on any affected Juniper device. Backgrou...
Adobe Releases Out-of-Band Security Bulletin for Adobe Acrobat and Reader (APSB19-02)
January 4, 2019Adobe issued an out-of-band security bulletin which addresses two critical vulnerabilities (CVE-2018-16011, CVE-2018-16018) in Adobe Acrobat and Reader. Background On January 3, Adobe released a s...
Microsoft Releases Out-of-Band Patch for Internet Explorer Remote Code Execution Vulnerability (CVE-2018-8653)
December 19, 2018Clement Lecigne of Google’s Threat Analysis Group has reported exploitation of an Internet Explorer vulnerability, CVE-2018-8653, prompting an out-of-band patch from Microsoft. Background On Dec...
Magellan: Remote Code Execution Vulnerability in SQLite Disclosed
December 14, 2018Researchers disclosed a remote code execution vulnerability in SQLite affecting Google Chromium-based browsers as well as the Google Home smart speaker. Background On December 14, researchers from T...
Patched Elasticsearch Vulnerabilities Used to Spread Cryptocurrency Miner (CVE-2014-3120, CVE-2015-1427)
December 13, 2018Attackers are actively scanning for vulnerable Elasticsearch systems in order to implant cryptocurrency mining scripts. Background In recent weeks, attackers have been observed scanning for vulnerab...