綠盟科技釋出了本周安全通告,周報編号nsfocus-17-10,綠盟科技漏洞庫本周新增32條,其中高危1條。本次周報建議大家關注 struts2 遠端代碼執行漏洞 cve-2017-5638 。攻擊者通過惡意的content-type值,可導緻遠端代碼執行。目前,apache官方已針對該漏洞已經釋出安全公告和更新檔。請受影響使用者及時檢查更新,修複漏洞。
struts2 遠端代碼執行漏洞
nsfocus id 36031
cve id cve-2017-5638
受影響版本
struts 2.3.5 – struts 2.3.31
struts 2.5 – struts 2.5.10
漏洞點評
apache struts是美國阿帕奇(apache)軟體基金會負責維護的一個開源項目,是一套用于建立企業級java web應用的開源mvc架構。struts2的jakarta multipart parser插件存在遠端代碼執行漏洞。該漏洞是由于上傳功能的異常處理函數沒有正确處理使用者輸入的錯誤資訊,攻擊者通過惡意的content-type值,可導緻遠端代碼執行。目前,apache官方已針對該漏洞已經釋出安全公告和更新檔。請受影響使用者及時檢查更新,修複漏洞。
(資料來源:綠盟科技安全研究部&産品規則組)
最近一周cve公告總數與前期相比。值得關注的高危漏洞如下:
<a href="http://toutiao.secjia.com/struts2-rce-high-risk-vulnerability-cve-2017-5638" target="_blank">struts 2再爆高危漏洞cve-2017-5638</a>
apache structs2的jakarta multipart parser插件存在遠端代碼執行漏洞,漏洞編号為cve-2017-5638。cwiki.apache.org公告了這個資訊。
http://toutiao.secjia.com/struts2-rce-high-risk-vulnerability-cve-2017-5638
<a href="http://toutiao.secjia.com/prc-cybersecurity-law-learning" target="_blank">兩會期間說網絡安全</a>
人大會議政協會議,其中網絡安全仍舊是議題之一。
http://toutiao.secjia.com/prc-cybersecurity-law-learning
<a href="http://toutiao.secjia.com/cia-response-to-wikileaks" target="_blank">維基解密說 cia能用三星電視機偷聽你的談話</a>
cia回應 “維基解密”黑客工具竊聽醜聞 。針對“維基解密”( wikileaks )網站提出的黑客工具索賠,美國中央情報局(cia)已發表聲明,但否認了對美國公民進行監視。
http://toutiao.secjia.com/cia-response-to-wikileaks
http://toutiao.secjia.com/wikileaks-cia-document-dump
<a href="http://toutiao.secjia.com/cloudpets-intelligent-toy-data-breach" target="_blank">cloudpets智能玩具資料洩露事件</a>
參議員調查cloudpets智能玩具資料洩露事件 美國多部門要求企業當月作出應急響應
http://toutiao.secjia.com/cloudpets-intelligent-toy-data-breach
<a href="http://toutiao.secjia.com/wordpress-rest-api-cve-2017-5487" target="_blank">wordpress rest api 漏洞又來了cve-2017-5487</a>
在2月份的時候, wordpress rest api 曾經爆出過越權漏洞 ,結果是黑客可以修改文章内容。3月3日,rest api又出現了越權漏洞,成功的利用這個漏洞,可以繞過管理者權限洩露使用者資料。
http://toutiao.secjia.com/wordpress-rest-api-cve-2017-5487
<a href="http://toutiao.secjia.com/new-disk-wiper-stonedrill-targets-europe" target="_blank">攻擊石油公司的惡意軟體stonedrill</a>
攻擊石油公司的惡意軟體又出來一個stonedrill 它跟shamoon的攻擊行為很類似
http://toutiao.secjia.com/new-disk-wiper-stonedrill-targets-europe
yahoo reveals 32 million accounts were hacked using ‘cookie forging attack’
yahoo has just revealed that around 32 million user accounts were accessed by hackers in the last two years using a sophisticated cookie forging attack without any password.
http://thehackernews.com/2017/03/yahoo-cookie-forging-hack.html?utm_source=feedburner&utm_medium=feed&utm_campaign=feed%3a+thehackersnews+%28the+hackers+news+-+security+blog%29
how a simple command typo took down amazon s3 and big chunk of the internet
amazon on thursday admitted that an incorrectly typed command during a routine debugging of the company’s billing system caused the 5-hour-long outage of some amazon web services (aws) servers on tuesday.
http://thehackernews.com/2017/03/amazon-web-storage.html
high severity bug discovered in cisco netflow generation appliance
a flaw in cisco netflow generation appliance tracked as cve-2017-3826, could be exploited by an unauthenticated, remote attacker to cause a dos condition.
http://securityaffairs.co/wordpress/56825/security/cisco-netflow-generation-appliance-flaw.html
google patches 35 critical android vulnerabilities
google this week released a new set of monthly security patches for android to address over 100 vulnerabilities in the platform, 35 of which carry a critical severity rating.
http://www.securityweek.com/google-patches-35-critical-android-vulnerabilities?utm_source=feedburner&utm_medium=feed&utm_campaign=feed%3a+securityweek+%28securityweek+rss+feed%29
data-wiping malware targets europe
shamoon—the mysterious disk wiper that popped up out nowhere in 2012 and took out more than 35,000 computers in a saudi arabian-owned gas company before disappearing—is back. its new, meaner design has been unleashed three time since november. what’s more, a new wiper developed in the same style as shamoon has been discovered targeting a petroleum company in europe, where wipers used in the middle east have not previously been seen.
https://arstechnica.com/security/2017/03/this-hard-drive-will-self-destruct-data-wiping-malware-targets-europe/
185,000+ wi-fi-connected cameras are open to hack
the researcher pierre kim revealed that more than 185,000 vulnerable wi-fi-connected cameras are exposed to the internet, ready to be hacked.
http://securityaffairs.co/wordpress/57003/hacking/wi-fi-connected-cameras-flaws.html
(資料來源:綠盟科技 威脅情報與網絡安全實驗室 收集整理)
截止到2017年3月10日,綠盟科技漏洞庫已收錄總條目達到36049條。本周新增漏洞記錄32條,其中高危漏洞數量1條,中危漏洞數量30條,低危漏洞數量1條。
wireshark rtmpt檔案解析器拒絕服務漏洞(cve-2017-6472)
危險等級:中
cve編号:cve-2017-6472
wireshark k12檔案解析器拒絕服務漏洞(cve-2017-6473)
cve編号:cve-2017-6473
wireshark netscaler檔案解析器拒絕服務漏洞(cve-2017-6474)
cve編号:cve-2017-6474
wireshark iax2 檔案解析器拒絕服務漏洞(cve-2017-6470)
cve編号:cve-2017-6470
wireshark wsp 檔案解析器拒絕服務漏洞(cve-2017-6471)
cve編号:cve-2017-6471
wireshark netscaler檔案解析器拒絕服務漏洞(cve-2017-6467)
cve編号:cve-2017-6467
wireshark netscaler檔案解析器拒絕服務漏洞(cve-2017-6468)
cve編号:cve-2017-6468
wireshark ldss檔案解析器拒絕服務漏洞(cve-2017-6469)
cve編号:cve-2017-6469
d-link dsl-2730u跨站請求僞造漏洞(cve-2017-6411)
bid:96560
cve編号:cve-2017-6411
d-link di-524跨站請求僞造漏洞(cve-2017-5633)
bid:96475
cve編号:cve-2017-5633
silverstripe cms跨站腳本攻擊漏洞(cve-2017-5197)
危險等級:低
cve編号:cve-2017-5197
linux kernel drivers/tty/n_hdlc.c拒絕服務漏洞(cve-2017-2636)
cve編号:cve-2017-2636
mcafee epolicy orchestrator跨站腳本漏洞(cve-2017-3902)
bid:96465
cve編号:cve-2017-3902
apache struts2 任意代碼執行漏洞(cve-2017-5638)
危險等級:高
cve編号:cve-2017-5638
ibm db2 資訊洩露漏洞(cve-2017-1150)
bid:96597
cve編号:cve-2017-1150
ibm websphere commerce本地資訊洩露漏洞(cve-2016-5894)
bid:96624
cve編号:cve-2016-5894
google android recovery verifier權限提升漏洞(cve-2017-0475)
bid:96716
cve編号:cve-2017-0475
schneider electric wonderware intelligence預設憑證安全限制繞過漏洞(cve-2017-5178)
bid:96721
cve編号:cve-2017-5178
php formmail generator跨站腳本漏洞(cve-2016-9493)
bid:96718
cve編号:cve-2016-9493
php formmail generator任意檔案上傳漏洞(cve-2016-9492)
cve編号:cve-2016-9492
netpbm 本地堆緩沖區溢出漏洞(cve-2017-2580)
bid:96712
cve編号:cve-2017-2580
netpbm 本地整數溢出漏洞(cve-2017-2581)
bid:96710
cve編号:cve-2017-2581
netpbm 本地拒絕服務漏洞(cve-2017-2579)
bid:96714
cve編号:cve-2017-2579
ibm content navigator跨站腳本漏洞(cve-2017-1146)
bid:96761
cve編号:cve-2017-1146
ibm tivoli system automation本地權限提升漏洞(cve-2017-1134)
bid:96764
cve編号:cve-2017-1134
google android libgdx遠端代碼執行漏洞(cve-2017-0477)
bid:96760
cve編号:cve-2017-0477
google android framesequence library遠端代碼執行漏洞(cve-2017-0478)
bid:96762
cve編号:cve-2017-0478
qbittorrent 跨站腳本漏洞(cve-2017-6503)
bid:96758
cve編号:cve-2017-6503
gdk-pixbuf gdk-pixbuf-thumbnailer.c拒絕服務漏洞(cve-2017-6311)
cve編号:cve-2017-6311
gdk-pixbuf io-ico.c拒絕服務漏洞(cve-2017-6312)
cve編号:cve-2017-6312
gdk-pixbuf load_resources函數拒絕服務漏洞(cve-2017-6313)
cve編号:cve-2017-6313
gdk-pixbuf make_available_at_least函數拒絕服務漏洞(cve-2017-6314)
cve編号:cve-2017-6314
原文釋出時間:2017年3月24日
本文由:綠盟科技釋出,版權歸屬于原作者
原文連結:http://toutiao.secjia.com/nsfocus-internet-security-threats-weekly-201710
本文來自雲栖社群合作夥伴安全加,了解相關資訊可以關注安全加網站