This Week in Security News

Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. Below you’ll find a quick recap of topics followed by links to news articles and/or our blog posts providing additional insight. Be sure to check back...

CVE-2017-0649

An elevation of privilege vulnerability in the MediaTek sound driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Moderate because it first requires compromising a privileged process and because of vulnerability...

CVE-2017-8438

Elastic X-Pack Security versions 5.0.0 to 5.4.0 contain a privilege escalation bug in the runas functionality. This bug prevents transitioning into the specified user specified in a runas request. If a role has been created using a template that contains the user properties, the behavior of runas...

samba: Loading shared modules from any path in the system leading to RCE (SambaCry)

A remote code execution flaw was found in Samba. A malicious authenticated samba client, having write access to the samba share, could use this flaw to execute arbitrary code as root...

Elastic Stack 5.4.1 and 5.3.3 Security updates

X-Pack 5.4.1 privilege escalation ESA-2017-06 X-Pack 5.4.1 has been released which fixes a privilege escalation bug in the runas functionality. This bug prevents transitioning into the specified user specified in a runas request. If a role has been created using a template that contains the user...

ImageMagick 'coders/rle.c' Denial of Service Vulnerability

ImageMagick is a set of open-source image processing software from the U.S. company ImageMagick Studio. The software can read, convert and write pictures in a variety of formats. A denial of service vulnerability exists in ImageMagick version 7.0.5-5, which stems from the program's failure to...

DEBIAN-CVE-2017-9144

In ImageMagick 7.0.5-5, a crafted RLE image can trigger a crash because of incorrect EOF handling in coders/rle.c...

DEBIAN-CVE-2017-9098

ImageMagick before 7.0.5-2 and GraphicsMagick before 1.3.24 use uninitialized memory in the RLE decoder, allowing an attacker to leak sensitive information from process memory space, as demonstrated by remote attacks against ImageMagick code in a long-running server process that converts image da...

The WannaCry Ransomware Hackers Made Some Real Amateur Mistakes

Researchers say the worst ransomware epidemic ever is also poorly run, shoddily coded, and barely profitable. The post The WannaCry Ransomware Hackers Made Some Real Amateur Mistakes appeared first on WIRED...

Microsoft Edge CVE-2017-0241 Remote Privilege Escalation Vulnerability

Description Microsoft Edge is prone to a remote privilege-escalation vulnerability. An attacker can exploit this issue to gain elevated privileges. Technologies Affected Microsoft Edge Recommendations Block external access at the network boundary, unless external parties require service. Filter...

ZTE Anyservice suffers from s2-045 remote command execution vulnerability

ZTE Anyservice is a fast-response, highly customizable solution for customers. A s2-045 remote command execution vulnerability exists in the ZTE anyservice device, which allows attackers to remotely execute commands and gain server privileges...

s2-045 Remote Code Execution Vulnerability in the igateway Gateway System

The igateway gateway is a gateway system produced by Guangzhou Yihang Interconnection Communication Co. The igateway gateway system suffers from a s2-045 remote code execution vulnerability, which allows remote attackers to exploit the vulnerability to execute commands and gain server privileges...

This Week in Security News

Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. Below you’ll find a quick recap of topics followed by links to news articles and/or our blog posts providing additional insight. Be sure to check back...

FreeType 2 'cff_parser_run' function boundary write heap buffer overflow vulnerability

FreeType 2 is a C-based , portable open source font engine library developed by the FreeType team , which can be used to rasterize and map characters into bitmaps and provide support for other font-related businesses . A heap-based buffer overflow vulnerability exists in the 'cffparserrun' functi...

DEBIAN-CVE-2016-7519

The ReadRLEImage function in coders/rle.c in ImageMagick allows remote attackers to cause a denial of service out-of-bounds read via a crafted file...

CVE-2017-7690

Proxifier for Mac before 2.19.2, when first run, allows local users to gain privileges by replacing the KLoader binary with a Trojan horse program...

PonyOS 4.0 fluttershy LD_LIBRARY_PATH Privilege Escalation

!/usr/bin/python PonyOS 4.0 has added several improvements over previous releases including support for setuid binaries and dynamic libraries. The run-time linker does not sanitize environment variables when running setuid files allowing for local root exploitation through manipulated...

UBUNTU-CVE-2016-10328

FreeType 2 before 2016-12-16 has an out-of-bounds write caused by a heap-based buffer overflow related to the cffparserrun function in cff/cffparse.c...

CVE-2016-8726

An exploitable null pointer dereference vulnerability exists in the Web Application /forms/webrunScript iwfilename functionality of Moxa AWK-3131A Wireless Access Point running firmware 1.1. An HTTP POST request with a blank line in the header will cause a segmentation fault in the web server...

The vulnerability of the console-based graphic editor ImageMagick and the operating system OpenSUSE Leap allows a hacker to trigger a service failure.

The vulnerability of the ReadRLEImage function in the console-based image editing tool ImageMagick and the operating system OpenSUSE Leap is caused by a buffer overflow in the dynamic memory. Exploiting this vulnerability allows an attacker to cause a service failure application termination by...