Rewterz Threat Advisory – Slack fixes Vulnerability Exploitable for Session Hijacking

Rewterz Threat Advisory – VMware Multiple Vulnerabilities

March 15, 2020

Rewterz Threat Advisory – Adobe Fixes 13 Vulnerabilities in Reader and Acrobat

March 18, 2020

Rewterz Threat Advisory – Slack fixes Vulnerability Exploitable for Session Hijacking

Severity

High

Analysis Summary

This form of attack tampers with the processes sequences of HTTP requests within a website or app, generally when front-facing services send an HTTP request to a back-end server, and any disparity between how requests are interpreted can lead to data leaks and the bypass of existing security controls.

Impact

Data leak
Session hijacking

Affected Vendors

Slack

Remediation

Update to latest version

Rewterz Threat Advisory – VMware Multiple Vulnerabilities

Rewterz Threat Advisory – Adobe Fixes 13 Vulnerabilities in Reader and Acrobat

Rewterz Threat Advisory – Slack fixes Vulnerability Exploitable for Session Hijacking

Severity

Analysis Summary

Impact

Affected Vendors

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan