Tony Zeoli, Tony Hayes Security Vulnerabilities

Supply Chain Security 101: An Expert’s View

Earlier this month I spoke at a cybersecurity conference in Albany, N.Y. alongside Tony Sager, senior vice president and chief evangelist at the Center for Internet Security and a former bug hunter at the U.S. National Security Agency. We talked at length about many issues, including supply chain.....

Sony Smart TV Bug Allows Remote Access, Root Privileges

As the number of smart TVs grows, so does the number of vulnerabilities inside of them. On Thursday, security researchers revealed that eight Sony Bravia smart TV models are vulnerable to three separate bugs, one rated critical. The flaws – a stack buffer overflow, a directory traversal and a...

Running a security awareness program

So, you've finally convinced management of the need for security awareness training. What next? I’ve been performing security awareness training for around 10 years, and doing it full time here at PTP for the last 3 and a half years. From the thousands of sessions I have run I’ve found the most...

Experts Bemoan Shortcomings with IoT Security Bill

An internet of things (IoT) bill that would mandate unique passwords for connected devices has been approved by the California state legislature. It will be the first potential connected device regulation to come into effect in the United States if California Gov. Jerry Brown decides to sign it —.....

ProtonVPN, NordVPN Flaws Open Door to Privilege Escalation

UPDATE A pair of vulnerabilities in the ProtonVPN and NordVPN VPN clients have been uncovered, which allow attackers to execute code as an administrator on targeted Microsoft Windows machines. In both cases [CVE-2018-3952 (NordVPN) and CVE-2018-4010 (ProntonVPN)], the clients have the same design,....

CentOS 7 : bind (CESA-2018:2570)

An update for bind is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the....

CentOS 6 : bind (CESA-2018:2571)

An update for bind is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the....

bind security update

CentOS Errata and Security Advisory CESA-2018:2570 The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying...

bind security update

CentOS Errata and Security Advisory CESA-2018:2571 The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying...

Oracle Linux 6 : bind (ELSA-2018-2571)

From Red Hat Security Advisory 2018:2571 : An update for bind is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating,...

Oracle Linux 7 : bind (ELSA-2018-2570)

From Red Hat Security Advisory 2018:2570 : An update for bind is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating,...

(RHSA-2018:2571) Important: bind security update

The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly. Security....

(RHSA-2018:2570) Important: bind security update

The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly. Security....

Unbreakable Enterprise kernel security update

[4.14.35-1818.1.6] - ipv4: frags: handle possible skb truesize change (Eric Dumazet) [Orabug: 28481663] {CVE-2018-5391} [4.14.35-1818.1.5] - inet: frag: enforce memory limits earlier (Eric Dumazet) [Orabug: 28481663] {CVE-2018-5391} - init/main.c: reorder...

Unbreakable Enterprise kernel security update

[4.1.12-124.18.5] - inet: frag: enforce memory limits earlier (Eric Dumazet) [Orabug: 28450977] - x86/mm/pageattr.c: fix page prot mask (Mihai Carabas) [Orabug: 28492122] - x86/pgtable.h: fix PMD/PUD mask (Mihai Carabas) [Orabug: 28492122] - x86/asm: Add pud/pmd mask interfaces to handle...

DOJ Nabs Three FIN7 Cybercrime Suspects in Europe

Three suspected members of the FIN7 cybercrime group have been arrested in Europe and accused of hacking more than 120 U.S.-based companies with the intent of stealing bank cards. In total, U.S. Department of Justice authorities said the FIN7 group — associated with the Carbanak crime gang — is...

kernel security and bug fix update

[2.6.32-754.OL6] - Update genkey [bug 25599697] [2.6.32-754] - [powerpc] 64s: Add support for a store forwarding barrier at kernel entry/exit (Mauricio Oliveira) [1581053] {CVE-2018-3639} - [x86] amd: Disable AMD SSBD mitigation in a VM (Waiman Long) [1580360] - [x86] spec_ctrl: Fix late microcode....

GDPR: A Compliance Quagmire, for Now

The European Union’s General Data Protection Regulation (GDPR) has gone into effect – but questions as to what compliance actually means are far from settled. While the GDPR is a European regulation, it affects any organization that handles data on E.U. citizens, whether they be customers or...

Podcast: The Evolution of Deception Technology

Deception technology is an emerging category of cyber defense that is particularly useful when it comes to IoT devices, SCADA systems and medical devices. Threatpost talks to Tony Cole, CTO of Attivo Networks, about how deception technology has evolved, the challenges behind and opportunities of...

georges-tony-stoll.com XSS vulnerability

Open Bug Bounty ID: OBB-607909 Description| Value ---|--- Affected Website:| georges-tony-stoll.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS (Cross Site Scripting) / CWE-79 CVSSv3 Score:| 6.1...

IoT Security Concerns Peaking – With No End In Sight

SAN FRANCISCO – With the massive influx of connected devices into our digital lives, it’s no surprise that IoT security was on the forefront of the 2018 RSA Conference this year. But despite numerous talks about IoT vulnerabilities this week, a clear resolution seems nowhere in sight. “A lot of...

CVE-2018-6798

An issue was discovered in Perl 5.22 through 5.26. Matching a crafted locale dependent regular expression can cause a heap-based buffer over-read and potentially information disclosure. Bugs https://rt.perl.org/Public/Bug/Display.html?id=132063 Notes Author| Note ---|--- ratliff | Fix developed...

CVE-2018-6913

Heap-based buffer overflow in the pack function in Perl before 5.26.2 allows context-dependent attackers to execute arbitrary code via a large item count. Bugs https://rt.perl.org/Public/Bug/Display.html?id=131844 Notes Author| Note ---|--- ratliff | Fix developed by Tony...

tony-hendrik.com XSS vulnerability

Open Bug Bounty ID: OBB-596905 Description| Value ---|--- Affected Website:| tony-hendrik.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS (Cross Site Scripting) / CWE-79 CVSSv3 Score:| 6.1...

tonybasilio.com XSS vulnerability

Open Bug Bounty ID: OBB-582195 Description| Value ---|--- Affected Website:| tonybasilio.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS (Cross Site Scripting) / CWE-79 CVSSv3 Score:| 6.1...

theologynetwork.org XSS vulnerability

Open Bug Bounty ID: OBB-554876 Description| Value ---|--- Affected Website:| theologynetwork.org Vulnerable Application:| Custom Code Vulnerability Type:| XSS (Cross Site Scripting) / CWE-79 CVSSv3 Score:| 6.1 [CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N] Disclosure Standard:| Coordinated...

abcnews.go.com XSS vulnerability

Open Bug Bounty ID: OBB-554187 Description| Value ---|--- Affected Website:| abcnews.go.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS (Cross Site Scripting) / CWE-79 CVSSv3 Score:| 6.1...

Leaky RootsWeb Server Exposes Some Ancestry.com User Data

Ancestry.com said it closed portions of its community-driven genealogy site RootsWeb as it investigated a leaky server that exposed 300,000 passwords, email addresses and usernames to the public internet. In a statement issued over the weekend, Chief Information Security Officer of Ancestry.com...

Unbreakable Enterprise kernel security and bugfix update

[4.1.12-112.14.1] - ext4: fix off-by-one on max nr_pages in ext4_find_unwritten_pgoff() (Eryu Guan) [Orabug: 27233471] [4.1.12-112.13.1] - cgroup: make sure a parent css isnt offlined before its children (Tejun Heo) [Orabug: 27179269] [4.1.12-112.12.1] - ctf: allow dwarf2ctf to run as root but...

Implementing the CIS 20 Critical Security Controls: Building Upon Foundational Cyber Hygiene

Most successful cyber attacks exploit known vulnerabilities for which patches are available, or take advantage of weak configuration settings that could have been easily hardened. You can significantly lower the risk of being victimized by this type of common, preventable attack by adopting the...

How To Budget For Cyber Security in 2018

As Q4 begins in earnest, now is the time to start making considerations for next year's budgets. This is especially true for the company's IT and cyber security budgets - a difficult decision with so many robust technologies and new threats emerging. Compounding this problem is the fact that many.....

WordPress WPHRM plugin <= 1.0 - Authenticated SQL Injection

WordPress WPHRM plugin Authenticated SQL Injection allows an attacker to inject SQL commands via the employee_id $_GET param. Solution Update the...

Apache Foundation Refutes Involvement in Equifax Breach

A group of developers behind Apache Struts, believed by some to be the culprit behind last week’s Equifax breach, took umbrage with those claims over the weekend. René Gielen, vice president of the Apache Struts Project Management Committee (PMC) at the Apache Software Foundation, wrote Saturday...

WPHRM <= 1.0 - Authenticated SQL Injection

The vulnerability allows an employee users to inject SQL...

WPHRM <= 1.0 - Authenticated SQL Injection

The vulnerability allows an employee users to inject SQL commands. PoC http://localhost/[PATH]/?hr-dashboard=user&page;=message&tab;=view_message&from;=inbox&id;=[SQL]-23+union+select...

Google Reminding Admins HTTP Pages Will Be Marked 'Not Secure' in October

Google began sending out notices to site owners this month, reminding those who haven’t yet migrated from HTTP to HTTPS that in October their sites will be marked “NOT SECURE.” The warnings are directed to owners of HTTP pages that contain forms, specifically sites that include text input fields...

Unbreakable Enterprise kernel security update

kernel-uek [4.1.12-103.3.8] - fs/exec.c: account for argv/envp pointers (Kees Cook) [Orabug: 26638900] {CVE-2017-1000365} {CVE-2017-1000365} [4.1.12-103.3.7] - i40e/i40evf: check for stopped admin queue (Mitch Williams) [Orabug: 26654222] [4.1.12-103.3.6] - xen: fix bio vec merging (Roger Pau...

rustgo: calling Rust from Go with near-zero overhead

[русский] Go has good support for calling into assembly, and a lot of the fast cryptographic code in the stdlib is carefully optimized assembly, bringing speedups of over 20 times. However, writing assembly code is hard, reviewing it is possibly harder, and cryptography is unforgiving. Wouldn't...

rustgo: calling Rust from Go with near-zero overhead

[русский] Go has good support for calling into assembly, and a lot of the fast cryptographic code in the stdlib is carefully optimized assembly, bringing speedups of over 20 times. However, writing assembly code is hard, reviewing it is possibly harder, and cryptography is unforgiving. Wouldn't...

August 4, 2017 – Morning Cyber Coffee Headlines – “Gerald R. Ford ” Edition

Good morning! Sit with Carbon Black this morning over a cup of coffee (or tea) and browse a few industry headlines to get the day started. We’ve got just enough information below to get you through that first cup…enjoy! August 4, 2017 - Headlines Why can't films and TV accurately portray hackers?.....

August 3, 2017 – Morning Cyber Coffee Headlines – “Tony Bennett” Edition

Good morning! Sit with Carbon Black this morning over a cup of coffee (or tea) and browse a few industry headlines to get the day started. We’ve got just enough information below to get you through that first cup…enjoy! August 3, 2017 - Headlines Carbon Black in the News: 10 tips for...

Ruby vulnerabilities

Releases Ubuntu 17.04 Ubuntu 16.04 ESM Ubuntu 14.04 ESM Packages ruby1.9.1 - Object-oriented scripting language ruby2.0 - Object-oriented scripting language ruby2.3 - Object-oriented scripting language Details It was discovered that Ruby DL::dlopen incorrectly handled opening libraries. An...

RHEL 7 : bind (RHSA-2017:1583)

An update for bind is now available for Red Hat Enterprise Linux 7.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for...

(RHSA-2017:1583) Important: bind security and bug fix update

The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly. Security....

Anthem Agrees to Settle 2015 Data Breach for $115 Million

Like many companies hit by data breaches, Anthem, the United States’ largest for-profit health care company, has been forced to watch from the sidelines while the incident plays out in court. An end finally appears to be in sight however. Late Friday the company agreed to settle a series of...

Internet Bug Bounty: heap-buffer-overflow (READ of size 61) in Perl_re_intuit_start()

Reported to the Perl security mailing list on 25 August 2016. ``` ==17057==ERROR: AddressSanitizer: heap-buffer-overflow on address 0x60800000b978 at pc 0x0000004a9201 bp 0x7ffe97551890 sp 0x7ffe97551048 READ of size 61 at 0x60800000b978 thread T0 #0 0x4a9200 in __interceptor_memcmp...

US Court Sentences Russian Lawmaker's Son to 27 Years in Jail for Hacking

The son of a prominent Russian lawmaker was sentenced on Friday by a US federal court to 27 years in prison after being convicted of stealing millions of US credit card numbers and causing some $170 million in damages to businesses and individuals. This sentence is so far the longest sentence...

CVE-2016-5067

Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 allow Hayes AT command...

CVE-2016-5067

Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 allow Hayes AT command...

Command injection

Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 allow Hayes AT command...