Advisories – mwCERT

NETGEAR Authentication Bypass Allows Router Takeover

Microsoft security researchers have disclosed three critical security vulnerabilities that affect NETGEAR DGN2200v1 series routers. The vulnerabilities in Netgear routers can lead to identity theft and full system compromise. Description The vulnerabilities allow access to the router management pages using an authentication bypass that lets a threat actor attain complete control over the router and [...]

By MwCERT|2021-07-02T13:31:09+00:00July 2nd, 2021|Advisories|Comments Off

Vulnerabilities in Python, Tornado, and Urllib3 affect IBM Spectrum Protect Plus Microsoft File Systems Backup and Restore

IBM Spectrum Protect Plus is a modern data protection solution that provides near-instant data recovery, replication, retention, and reuse for physical and virtual machines, Windows file systems, databases applications, SaaS workloads, and containers. It is easily deployed as a virtual appliance and the agentless architecture is easy to maintain. It unlocks the value of your [...]

By MwCERT|2021-07-05T09:06:38+00:00July 1st, 2021|Advisories|Comments Off

Microsoft Windows Print Spooler Rce Vulnerability

The Microsoft Windows Print Spooler service fails to restrict access to the RpcAddPrinterDriverEx() function, which can allow a remote authenticated attacker to execute arbitrary code with SYSTEM privileges on a vulnerable system. Identified as CVE-2021-1675, the security issue could grant remote attackers full control of vulnerable systems. Print Spooler manages the printing process in Windows, including loading the [...]

By MwCERT|2021-07-03T22:32:26+00:00July 1st, 2021|Advisories|Comments Off

Adobe’s Critical Patches for Acrobat Reader, Photoshop, Bridge, ColdFusion

Adobe released a massive batch of out-of-band software updates for six of its products to patch a total of 41 new security vulnerabilities on 18 March 2020. Adobe made a pre-announcement to inform its users of an upcoming security update for Acrobat and Reader, but the company unveiled bugs in a total of 6 [...]

By Khumbo Kasambara|2020-04-22T07:48:31+00:00April 22nd, 2020|Advisories|Comments Off

Microsoft Issues Patches for 4 Bugs Exploited as Zero-Day in the Wild

Microsoft has 0n 14-04-2020 released the latest batch of software security updates for all supported versions of its Windows operating systems and other products that patch a total of 113 new security vulnerabilities, 17 of which are critical and 96 rated important in severity. Patches for 4 Zero-Days Exploited In the Wild Most importantly, two of [...]

By Khumbo Kasambara|2020-04-15T08:48:46+00:00April 15th, 2020|Advisories|Comments Off

Memcached reflection denial-of-service

CERT MW has been informed of an active attack that is using memcached servers to perform a reflected Denial of Service (DoS) attack. This allows attackers to send queries to the memcached servers on port UDP/11211 or TCP/11211 and spoof the source IP and port (the target). The response would be amplified and reflected back [...]

By Jessie|2018-09-27T08:30:02+00:00September 26th, 2018|Advisories|Comments Off

MikroTik RouterOS vulnerability

CERT MW has been informed of an active attack targeting MikroTik RouterOS devices.Attackers are identifying these devices by scanning for public IP addresses running specific RouterOS ports and using older versions of the operating system. Once the vulnerability is exploited, malware is downloaded to the compromised devices. The device is then being used to scan [...]

By Jessie|2018-09-27T08:32:00+00:00September 26th, 2018|Advisories|Comments Off