From edge appliance to enterprise compromise: Multi-stage Linux intrusion via F5 and Confluence

In this article 1. Attack chain overview 1. Initial access: Exploiting edge appliances 2. Discovery and reconnaissance 3. Lateral movement and identity compromise 2. Mitigation and protection guidance 1. Microsoft Defender XDR detections 2. Advanced hunting 3. Indicators of compromise IOC 4. MITR...

From edge appliance to enterprise compromise: Multi-stage Linux intrusion via F5 and Confluence

In this article 1. Attack chain overview 1. Initial access: Exploiting edge appliances 2. Discovery and reconnaissance 3. Lateral movement and identity compromise 2. Mitigation and protection guidance 1. Microsoft Defender XDR detections 2. Advanced hunting 3. Indicators of compromise IOC 4. MITR...

CVE-2000-0712

Linux Intrusion Detection System LIDS 0.9.7 allows local users to gain root privileges when LIDS is disabled via the security=0 boot option...

CVE-2000-0712

Linux Intrusion Detection System LIDS 0.9.7 allows local users to gain root privileges when LIDS is disabled via the security=0 boot option...

CVE-2000-0712

CVE-2000-0712 affects Linux Intrusion Detection System (LIDS) 0.9.7. The issue allows local users to gain root privileges when LIDS is disabled via the security=0 boot option. The provided documents state the affected component and the condition that enables elevation but do not include explicit ...

LIDS severe bug

Hi. Didn't see a message regarding this one here, so here we go... This is from the Linux Intrusion Detection System LIDS/www.lids.org mailing list. Basically LIDS 0.9.7 for kernel 2.2.16 breaks the system so that every user is acting as uid=0 when the system has been started with /security=0 at...