Category Archives: News

Telnet zero-day on cisco devices

Cisco announced a remote code execution vulnerability that affects telnet on catalyst series devices. Once again this has to do with the documents leaked by Wikileaks, known as Vault 7.

Cisco recommends to enable only SSH access on the devices affected, if possible. For devices that do not support SSH, VTY access lists may be applied to reduce the risk.

More information about the vulnerability and the devices affected, can be found here.

1 Star2 Stars3 Stars4 Stars5 Stars (No Ratings Yet)
Loading...

Mikrotik HTTP server vulnerability

This is for those who are having the HTTP service of mikrotik activated on the internet.

On March 2017 Wikileaks published some documents that supposed to belong to CIA under the name of Vault 7, describing that CIA has an exploit called “ChimayRed” ┬áby which can inject malicious code on RouterOS if the HTTP service is not protected.

You can find info and information on solving this, here.

1 Star2 Stars3 Stars4 Stars5 Stars (No Ratings Yet)
Loading...