Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2023-25135PUBLISHED: 2023-02-03
vBulletin before 5.6.9 PL1 allows an unauthenticated remote attacker to execute arbitrary code via a crafted HTTP request that triggers deserialization. This occurs because verify_serialized checks that a value is serialized by calling unserialize and then checking for errors. The fixed versions are...
CVE-2022-4634PUBLISHED: 2023-02-03All versions prior to Delta Electronic’s CNCSoft version 1.01.34 (running ScreenEditor versions 1.01.5 and prior) are vulnerable to a stack-based buffer overflow, which could allow an attacker to remotely execute arbitrary code.
CVE-2023-0123PUBLISHED: 2023-02-03Delta Electronics DOPSoft versions 4.00.16.22 and prior are vulnerable to a stack-based buffer overflow, which could allow an attacker to remotely execute arbitrary code when a malformed file is introduced to the software.
CVE-2023-0124PUBLISHED: 2023-02-03Delta Electronics DOPSoft versions 4.00.16.22 and prior are vulnerable to an out-of-bounds write, which could allow an attacker to remotely execute arbitrary code when a malformed file is introduced to the software.
CVE-2023-24613PUBLISHED: 2023-02-03
The user interface of Array Networks AG Series and vxAG through 9.4.0.470 could allow a remote attacker to use the gdb tool to overwrite the backend function call stack after accessing the system with administrator privileges. A successful exploit could leverage this vulnerability in the backend bin...
User Rank: Apprentice
12/15/2014 | 10:19:39 AM
In this paper I discuss how we specifi9cally must start sharing sanitized attack data with law enforcement and each other if we are to even have a chance of slowing down the attackers much less stopping them
My paper can be found here: https://www.sans.org/reading-room/whitepapers/warfare/defense-depth-impractical-strategy-cyber-world-33896
I am glad to see that there is a trend now to do what I have been advocating for with the FBI and others since 2011.
I refer to the threatscape we face as Sustained Cyber-Siege Defense:
Excerpt from my publication: (Ignore the numbering - the web page won't let me change it.)
Keystones of Sustained Cyber-Siege Defense:
i. Strip out company specifics, but share the data. In order for there to be success it is critical for IT Security Professionals to not only have accurate, actionable data, they must get it in a timely fashion as well.
i. All Malware should be identified by hash values and not the dozens of text based aliases seen today.