Tuesday, March 19, 2019
Symantec

SYMSA1475-Norton Password Manager Address Spoof

Symantec has released an update to address an issue that was discovered in the Norton Password Manager product.
Symantec

SYMSA1469-OpenSSH Vulnerabilities Jan-Aug 2018

Symantec Network Protection products using affected versions of OpenSSH are susceptible to several vulnerabilities.  A remote attacker, with access to the management interface, can obtain usernames for valid SSH users and cause denial of service through application crashes.
Symantec

SYMSA1467-Linux Kernel Aug 2017 – Sep 2018 Vulnerabilities

Symantec Network Protection products that include a vulnerable version of the Linux kernel are susceptible to multiple vulnerabilities.  A remote attacker, with access to the management interface, can obtain unauthorized read/write access to local files, cause denial of service,...
Symantec

SYMSA1463-Apache Tomcat Vulnerabilities Jan-Aug 2018

Symantec Network Protection products using affected versions of Apache Tomcat are susceptible to multiple security vulnerabilities. A remote attacker, with access to the management interface, can gain unauthorized access to a web application resource or cause denial of service...
Symantec

SYMSA1462-OpenSSL Vulnerabilities 16-Apr-2018 and 12-Jun-2018

Symantec Network Protection products using affected versions of OpenSSL are susceptible to several vulnerabilities. A malicious SSL/TLS server can send large DH parameters during connections using DH/DHE cipher suites and cause denial-of-service in the SSL/TLS client. A local attacker can...
Symantec

SYMSA1457-Apache HTTP Server Vulnerabilities Jul 2017 – Sep 2018

Symantec Network Protection products using affected versions of Apache httpd are susceptible to multiple security vulnerabilities. A remote attacker can obtain sensitive information, bypass intended security restrictions, modify session information in CGI applications, replay authenticated HTTP requests, and cause...
Symantec

SYMSA1443- SA166: OpenSSL Vulnerabilities 27-Mar-2018

Symantec Network Protection products using affected versions of OpenSSL are susceptible to several vulnerabilities.  A remote attacker can forge cryptographic messages and cause denial of service through application crashes.
Symantec

SYMSA1451- SA165: NTP Vulnerabilities February 2018

Symantec Network Protection products using affected versions of the NTP reference implementation from ntp.org are susceptible to multiple vulnerabilities. A remote attacker can exploit these vulnerabilities to execute arbitrary code, modify the target's system time, prevent the target from...
Symantec

SYMSA1397-SA144 : OpenSSH Vulnerabilities January 2017

Blue Coat products using affected versions of OpenSSH are susceptible to several vulnerabilities.  A remote attacker with access to an SSH server can exploit these vulnerabilities to execute arbitrary code on an SSH client.  A local attacker can also...
Symantec

SYMSA1426-SA161: Local Information Disclosure Due to Meltdown and Spectre Attacks

Symantec Network Protection products, which run on an affected CPU chipset and execute arbitrary code from external sources, are susceptible to several information disclosure vulnerabilities (aka Meltdown and Spectre attacks). A remote attacker, with the ability to execute arbitrary...
Symantec

SYMSA1423-SA157: OpenSSL Vulnerabilities 28-Aug-2017 and 2-Nov-2017

Symantec Network Protection products using affected versions of OpenSSL are susceptible to several vulnerabilities.  A remote attacker can send a crafted X.509 certificate to cause unspecified impact.  They can exploit, under certain circumstances, a computational flaw in the Montgomery squaring...
Symantec

SYMSA1419-SA156: Apache Tomcat Vulnerabilities Apr-Oct 2017

Symantec Network Protection products using affected versions of Apache Tomcat are susceptible to multiple security vulnerabilities.  A remote attacker, with access to the management interface, can obtain sensitive information from the server, modify information associated with a different web...
Symantec

SYMSA1392-SA133 : Sweet32 Birthday Attack against DES, 3DES, and Blowfish

Symantec Network ProtectionSy products that use the DES, 3DES, and Blowfish symmetric encryption ciphers in long-lived encrypted SSL/TLS, SSH, or VPN connections are susceptible to the Sweet32 birthday attack.  A remote attacker with the ability to observe a long-lived...
Symantec

SYMSA1377-SA129 : Multiple libxml2 Vulnerabilities

Blue Coat products that include a vulnerable version of the libxml2 library are susceptible to multiple vulnerabilities.  A remote attacker can exploit these vulnerabilities to execute arbitrary code and cause denial of service through memory corruption.
Symantec

SYMSA1374-SA128 : Multiple PCRE Vulnerabilities

Blue Coat products that include vulnerable versions of the PCRE and GLib2 libraries are susceptible to multiple vulnerabilities.  A remote attacker can exploit these vulnerabilities to execute arbitrary code and obtain sensitive information.  The attacker can also cause denial...
SC Magazine

Norwegian aluminum producer Norsk Hydro hit by an unspecified cyberattack

Norwegian aluminum producer Norsk Hydro was hit by a cyber attack which began Monday evening and escalated into the night. The Norwegian National Security Authority (NSM) declined to comment on what type of attack it was but said the extent...
SC Magazine

Glitch exposes Sprint customer data to other users

A bug has allowed some Sprint customers to see the personal data of other customers from their online accounts. The information visible includes names, cell phone numbers as well as calls made by other users and, and a Tech Crunch report cited...

6 Ways Mature DevOps Teams Are Killing It in Security

New survey shows where "elite" DevOps organizations are better able to incorporate security into application security.
The Register

Ransomware drops the Lillehammer on Norsk Hydro: Aluminium giant forced into manual mode after systems scrambled

Norway the power and metals wrangler could have seen this one coming Norwegian power and metals giant Norsk Hydro is battling an extensive ransomware infection on its computers.…

Old Tech Spills Digital Dirt on Past Owners

Researcher buys old computers, flash drives, phones and hard drives and finds only two properly wiped devices out of 85 examined.