Threat Level: green Handler on Duty: Brad Duncan

SANS ISC: InfoSec Handlers Diary Blog - Internet Storm Center Diary 2017-09-08 InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

YASRV (Yet Another Struts RCE Vulnerability) yes a different one from yesterday

Published: 2017-09-08
Last Updated: 2017-09-08 16:50:36 UTC
by Adrien de Beaupre (Version: 1)
0 comment(s)

Yesterday saw CVE-2017-9805, today we have a new remote code execution vulnerability in Apache Struts 2 which is CVE-2017-12611. Yesterdays was in the REST API and related to Java XML unsafe deserializarion. Todays relates to using Freemarker in your application. Both should encourage you to patch.

Current versions are Struts 2.3.34 and Struts 2.5.13.

Cheers,
Adrien de Beaupré, SANS Instructor and #SEC642 Co-author

0 comment(s)
What to communicate about the Equifax hack. http://securingthehuman.sans.org/u/vTU

Equifax breach

Published: 2017-09-08
Last Updated: 2017-09-08 16:13:39 UTC
by Adrien de Beaupre (Version: 1)
0 comment(s)

Equifax, one of the major credit bureaus in the USA has announced a breach that occurred in July. At 143 Million persons affected and considering the type of data this is significant. Canadians may have been affected as well. 

SANS's Securing the Human project has a nice summary for Security Teams / Awareness Officers / CISOs - What to communicate about the Equifax hack. 

http://securingthehuman.sans.org/u/vTU

Cheers,
Adrien
@adriendb
Intru-Shun.ca
Keywords:
0 comment(s)
ISC Stormcast For Friday, September 8th 2017 https://isc.sans.edu/podcastdetail.html?id=5660
Diary Archives