Tenable Network Security Podcast Episode 197 - "Telephony DoS, MediaWiki Vulnerabilities"
Announcements
- We're hiring! - Visit the Tenable website for more information about open positions.
- Want to ask questions about Nessus, PVS, SecurityCenter, and LCE, and get answers from the experts at Tenable? Join the Tenable Discussions Forum for custom scripts, announcements, and more!
- You can find links to subscribe to Tenable's Podcast feed, YouTube Channel, Twitter, and Facebook accounts at http://www.tenable.com/podcast!
Discussion & Highlighted Plugins
- Telephony DoS - I read an interesting article that detailed an attack that used a combination of social engineering and a DoS attack against your phone system. The attacker calls the victim and asks about unpaid debt. Whether you have debt or not, the attacker insists on payment. If you refuse, a DoS attack is launched against your phone systems using a combination of cheap labor and VoIP phones. Interesting how one defends against this attack.
- MediaWiki Vulnerability - There are actually two vulnerabilities in MediaWiki versions < 1.19.11 / 1.21.5 / 1.22.2. Yikes, this is widely deployed software, according to the reports from Checkpoint "Wikipedia.org is the sixth most-visited web site in the world, with over 94 million unique visitors per month and almost 2 million sites linking to it." This is a vulnerability to seek out and patch in your own environment. Who knows who may have installed this software and forgotten about it, giving attackers a foothold in your network? The two features that suffer from the vulnerability are not enabled by default, though I am unclear exactly which features these relate to. I've run MediaWiki for about 5 years, done several upgrades, and they are pretty painless.
Nessus
General
- Cisco Secure ACS RMI Arbitrary File Read (CSCud75169)
- Cisco Secure ACS Portal Cross-Site Scripting (CSCue65949)
- Puppet Symlink File Overwrite
- Landing Pages Plugin for WordPress wp-admin/edit.php post Parameter SQL Injection
- Cisco TelePresence Video Communication Server SIP DoS
- StruxureWare SCADA Expert ClearSCADA < 2013 R2 Remote DoS
- JBoss Detection
- IBM Tivoli Storage Manager Client 6.3.1.x < 6.3.2.0 / 6.4.x < 6.4.1.0 ReFS Insecure File Permissions
- McAfee VirusScan Enterprise < 8.8 / 8.7 HF643440 CLI Local Privilege Escalation
- SAP GUI DLL Loading Arbitrary Code Execution (Note 1511179)
- memcached < 1.4.17 Multiple Vulnerabilities
- Oracle Access Manager Installed (credentialed check)
- Oracle Access Manager October 2013 Critical Patch Update
- MediaWiki < 1.19.11 / 1.21.5 / 1.22.2 Multiple Remote Code Execution Vulnerabilities
- McAfee VirusScan Enterprise 8.5 / 8.7 hcp:// Security Bypass
- memcached SASL Authentication Security Bypass
- Symantec Workspace Virtualization Agent Detection
- Symantec Workspace Virtualization 6.x < 6.4.1953 Local Privilege Escalation (SYM13-011)
- IBM Global Security Kit 7 < 7.0.4.48 / 8 < 8.0.50.16 DoS
- Pidgin < 2.10.8 Multiple Vulnerabilities
- IBM Global Security Kit 7 < 7.0.4.47 / 8 < 8.0.50.13 DoS
- Flash Player for Mac <= 11.7.700.260 / 12.0.0.43 Unspecified Remote Code Execution (APSB14-04)
- MS KB2929825: Update for Vulnerability in Adobe Flash Player in Internet Explorer
- Amazon Linux AMI : openssl Remote Crash Vulnerability (ALAS-2014-273)
- Amazon Linux AMI : nss Man-in-the-middle Vulnerability (ALAS-2014-274)
- Amazon Linux AMI : varnish Multiple Vulnerabilities (ALAS-2014-276)
- Amazon Linux AMI : xorg-x11-server Buffer Overflow Vulnerability (ALAS-2014-277)
- Amazon Linux AMI : gnupg Side-channel Attack Vulnerability (ALAS-2014-278)
- Amazon Linux AMI : quagga Denial of Service (ALAS-2014-279)
- Amazon Linux AMI : ca-certificates Man-in-the-middle Vulnerability (ALAS-2014-281)
- Amazon Linux AMI : libXfont Buffer Overflow Vulnerability (ALAS-2014-282)
- Amazon Linux AMI : augeas Privilege Vulnerability (ALAS-2014-286)
- Amazon Linux AMI : puppet Filesystem Vulnerability (ALAS-2014-288)
- Firefox ESR 24.x < 24.3 Multiple Vulnerabilities (Mac OS X)
- Firefox < 27.0 Multiple Vulnerabilities (Mac OS X)
- Thunderbird < 24.3 Multiple Vulnerabilities (Mac OS X)
- Firefox ESR 24.x < 24.3 Multiple Vulnerabilities
- Firefox < 27.0 Multiple Vulnerabilities
- Mozilla Thunderbird < 24.3 Multiple Vulnerabilities
- SeaMonkey < 2.24 Multiple Vulnerabilities
- MongoDB < 2.3.2 BSON Object Length Handling Memory Disclosure
Passive Vulnerability Scanner
SecurityCenter Apps
Dashboards
Reports
Security News Stories
- SC Magazine Reviews SecurityCenter Continuous View - 5 Stars Across the Board
- A fine mess: Global data breach legislation
- Vulnerability Top Ten Executive Report
- Passive Vulnerability Scanner (PVS) 4.0.1 Now Available
- Leveraging Logins and Login Failures to Track Insiders
- How I Lost My $50,000 Twitter Username | Medium
- A chain is only as strong as its weakest link - DNS Hijack Monitoring | Corelan Team
- Reversing the WRT120N's Firmware Obfuscation | /dev/ttyS0
- RFKiller/mass-deauth | GitHub
- DanMcInerney/wifijammer | GitHub
- SecUpwN/Android-IMSI-Catcher-Detector | GitHub
- Target Hackers Broke in Via HVAC Company
- Installing Nessus on Kali Linux and Doing a Credentialed Scan
- JavaScript: the one true language
- Exploring the Telephony Denial of Service (TDoS)
- Mind Streams of Information Security Knowledge: A Peek Inside a Customer-ized API-enabled DIY Online Lab for Generating Multi-OS Mobile Malware | Dancho Danchev's Blog
- Mobile Malware Captures Keystrokes and Screengrabs | Threatpost
- Nest Team Will Become Google's Core Hardware Group
- Only Your Heartbeat Can Unlock This Bitcoin Wallet
- Wikipedia Remote Execution Vulnerability Patched | Threatpost
- Details Emerge on Latest Adobe Flash Zero-Day Exploit
- Rare Twitter username 'stolen' | In2EastAfrica
- Target Hackers Used Stolen Vendor Credentials
- Chewbacca Attack Hits Shops In 11 Nations
- US Hotels Look Into Data Security Breach
- The Government Wants Our Cars To Talk To Each Other
- Windows XP Support Cut-Off Could Lead To Spam Boom
- 800,000 Orange France Customers Face Cyberattack
Related Articles
NIST Cybersecurity Framework Adopted by Thirty Percent of US Organizations
February 18, 2016In the February 18, 2016 Risky Business podcast, Cris Thomas speaks with Patrick Gray about the NIST Cybersecurity Framework. Gartner recently announced that 30% of all US organizations - both public...
Tenable Network Security Podcast Episode 206 - "PCI, Breaches and more!"
September 15, 2014
Cybersecurity Snapshot: Attackers Pounce on Unpatched Vulns, DBIR Says, as Critical Infrastructure Orgs Benefit from CISA’s Alert Program
May 3, 2024Verizon’s DBIR found that hackers are having a field day exploiting vulnerabilities to gain initial access. Plus, a CISA program is helping critical infrastructure organizations prevent ransomware attacks. In addition, check out what Tenable’s got planned for RSA Conference 2024. And get the latest on the Change Healthcare breach. And much more!
As Pro-Russia Hactivists Target OT Systems, Here’s What You Need To Know
May 2, 2024U.S. and international cybersecurity and law enforcement agencies this week issued a joint fact sheet to highlight and safeguard against the continued malicious cyber activity conducted by pro-Russia hacktivists against operational technology (OT) devices in North America and Europe. Read on to get all the details and learn what actions to take today.
Tenable Bolsters Its Cloud Security Arsenal with Malware Detection
May 1, 2024Tenable Cloud Security is enhancing its capabilities with malware detection. Combined with its cutting-edge, agentless vulnerability-scanning technology, including its ability to detect anomalous behavior, this new capability makes Tenable Cloud Security a much more complete and effective solution. Read on to find out how.
- Podcast
- SecurityCenter
- Vulnerability Management