資安事件新聞週報  2019/7/1  ~  2019/7/5

1.重大弱點漏洞/後門/Exploit/Zero Day
PlayStation Network 存在安全性漏洞，駭客可繞過驗證盜刷信用卡
https://www.kocpc.com.tw/archives/267793

Palo Alto PAN-OS 阻斷攻擊漏洞
https://securityadvisories.paloaltonetworks.com/Home/Detail/151

Ubuntu 內核阻斷攻擊漏洞
https://www.auscert.org.au/bulletins/ESB-2019.2378/

Apache Tomcat - CGIServlet enableCmdLineArguments Remote Code Execution (Metasploit)
https://www.exploit-db.com/exploits/47073

Nagios XI 5.5.6 - Magpie_debug.php Root Remote Code Execution (Metasploit)
https://www.exploit-db.com/exploits/47039

Fortinet FCM-MB40 - Cross-Site Request Forgery / Remote Command Execution
https://www.exploit-db.com/exploits/47033

Symantec DLP 15.5 MP1 - Cross-Site Scripting
https://www.exploit-db.com/exploits/47071

McAfee ePolicy Orchestrator 多個漏洞
http://bit.ly/2JhMfLb

IBM InfoSphere Information Server 安全漏洞
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-4371

IBM WebSphere Application Server 資料洩露漏洞
https://nvd.nist.gov/vuln/detail/CVE-2019-4269

IBM WebSphe…

7月份資安、社群活動分享

 原廠認證Cellebrite Certified Operator (CCO) 7/2 ~ 7/3
 https://www.iforensics.com.tw/cgi-bin/registform.cgi?pick=26

 加密貨幣的正確使用方法 7/3
 https://www.meetup.com/Cryptocurrency-Forum/events/262694448/

 SyntaxError 7/3
 https://www.meetup.com/pythonhug/events/tnzzgpyzkbfb/

 Security Transformation for Next Generation 數位資安AI化 次世代轉型研討會  7/4
 http://tw.systex.com/20190704_security_seminar_fb/

  HackingThursday 固定聚會 7/4
 https://www.meetup.com/hackingthursday/events/vkhnnqyzkbgb/

 2019 車用電子與車聯網資安種子教師研習營  7/4 ~ 7/5
 http://www.kghs.kh.edu.tw/notice/11734

 【課程】區塊鏈智能合約觀念實作，DApp 去中心化應用、撰寫以太坊智能合約、發行自己的專屬代幣 7/6
 https://www.techbang.com/posts/70762-course-blockchain-intelligent-contract-concept-practice-de-centered-application

資安事件新聞週報  2019/6/24  ~  2019/6/28

1.重大弱點漏洞/後門/Exploit/Zero Day
Samba 產品存在安全性弱點 CVE-2019-12435
https://www.samba.org/samba/security/CVE-2019-12435.html

TP-Link 路由器多個漏洞 CVE-2018-16119
https://nvd.nist.gov/vuln/detail/CVE-2018-16119

SAPIDO RB-1732 - Remote Command Execution
https://www.exploit-db.com/exploits/47031

Fortinet FCM-MB40 - Cross-Site Request Forgery / Remote Command Execution
https://www.exploit-db.com/exploits/47033

修補漏洞優先順序及效率研究
https://www.nccst.nat.gov.tw/NewsRSSDetail?lang=zh&RSSType=news&seq=16256

Exim存在遠端指令執行漏洞
https://www.nccst.nat.gov.tw/NewsRSSDetail?lang=zh&RSSType=news&seq=16257

UNC Path Injection with Microsoft Access
https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/unc-path-injection-with-microsoft-access/

Oracle 發布安全更新 CVE-2019-2729
https://www.oracle.com/technetwork/security-advisory/alert-cve-2019-2729-5570780.html#AppendixFMW

Oracle WebLogic伺服器存在安全漏洞(CVE-2019-2725與CVE-2019-2729)
http://net.nthu.edu.tw/netsys/mailing:announcement:20190621_01

f5 --…

資安事件新聞週報  2019/6/17  ~  2019/6/21

1.重大弱點漏洞/後門/Exploit/Zero Day
GCHQ的漏洞裁定流程
https://www.xianjivr.com/news/46587.html

Netflix揭露FreeBSD與Linux核心漏洞
https://www.ithome.com.tw/news/131329

美國情治單位成功測試利用 BlueKeep 漏洞，於目標電腦上執行任意程式碼
https://www.twcert.org.tw/subpages/securityInfo/securitypolicy_details.aspx?id=875

售至全球50個國家的醫療用輸液幫浦含有遠端攻擊漏洞
https://cert.tanet.edu.tw/prog/shownews.php?sel=1&id=30648

Critical remote execution flaw lurks in TP-Link Wi-Fi Extenders
https://www.zdnet.com/article/critical-remote-execution-flaw-lurks-in-tp-link-wi-fi-extenders/#ftag=RSSbaffb68

Critical RCE Vulnerability in TP-Link Wi-Fi Extenders Can Grant Attackers Remote Control
https://securityintelligence.com/posts/critical-rce-vulnerability-in-tp-link-wi-fi-extenders-can-grant-attackers-remote-control/

TCP SACK PANIC - Kernel vulnerabilities - CVE-2019-11477, CVE-2019-11478 & CVE-2019-11479
https://access.redhat.com/security/vulnerabilities/tcpsack

Disgruntled security firm discloses zero-days in Facebook…

資安事件新聞週報  2019/6/10  ~  2019/6/14

1.重大弱點漏洞/後門/Exploit/Zero Day

VMware 發布新的安全更新
https://www.vmware.com/security/advisories/VMSA-2019-0009.html

Xen 阻斷服務漏洞
https://xenbits.xen.org/xsa/advisory-295.html

D-Link 連網監視攝影機被爆資安漏洞，駭客可取得影像內容
https://blog.twnic.net.tw/2019/06/13/3991/

TP-Link 路由器多個漏洞
https://nvd.nist.gov/vuln/detail/CVE-2019-6989

Facebook CDN系统中的文件下载漏洞
http://521.li/post/872.html

Zimbra < 8.8.11 - XML External Entity Injection / Server-Side Request Forgery
https://www.exploit-db.com/exploits/46967

phpMyAdmin 多個漏洞
https://www.auscert.org.au/bulletins/ESB-2019.2016/

資安事件新聞週報  2019/6/3  ~  2019/6/7

1.重大弱點漏洞/後門/Exploit/Zero Day
Zimbra Collaboration Suite 信息洩露漏洞
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15131

ZyXEL P-660HN-T1 V2 Missing Authentication / Password Disclosure
https://packetstormsecurity.com/files/153144/zyxelp660hn-bypass.txt

Fortinet產品存在多個漏洞
https://www.nccst.nat.gov.tw/VulnerabilityNewsDetail?lang=zh&seq=1440

phpMyAdmin 多個漏洞
https://www.auscert.org.au/bulletins/ESB-2019.2016/

New RCE vulnerability impacts nearly half of the internet's email servers
https://www.zdnet.com/article/new-rce-vulnerability-impacts-nearly-half-of-the-internets-email-servers/#ftag=RSSbaffb68

Huawei P30和Huawei P30 Pro 安全漏洞
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5307

京晨科技(NUUO Inc.)網路監控錄影系統(Network Video Recorder, NVR)存在安全漏洞(CVE-2019-9653)
http://net.nthu.edu.tw/2009/mailing:announcement:20190606_01

Apache Jenkins Exploited to Mine Monero Cryptocurrency
https://medium.com/pwnpizza/apache-jenkins-exploited-to-mine-monero-cryptocurrency-dc9a7…