Rewterz

Rewterz Threat Advisory – Microsoft Windows Server 2008 / Windows 7 Multiple Vulnerabilities

December 17, 2018
Rewterz

Rewterz Threat Advisory – Microsoft Windows Server 2016 / Windows 10 Multiple Vulnerabilities

December 18, 2018

Rewterz Threat Advisory – CVE-2017-3623 – IBM AIX / Virtual I/O Server RPC Arbitrary Code Execution Vulnerability

SEVERITY: HIGH

 

 

CATEGORY: VULNERABILITY

 

 

PUBLISH DATE: DECEMBER 17, 2018

 

 

ANALYSIS SUMMARY

 

 

This is a vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Kernel RPC). This vulnerability can be easily exploited, allowing an unauthenticated attacker with network access via multiple protocols to compromise Solaris. While the vulnerability resides in Solaris, attacks may significantly impact additional products.

 

Successful attacks of this vulnerability can result in takeover of Solaris.

 

An attacker can exploit this issue to execute arbitrary code within the context of the target server.

 

 

IMPACT

 

 

System access, Remote code execution

 

 

AFFECTED PRODUCTS

 

 

IBM Virtual I/O Server versions 2.2.x.

IBM AIX version 5.3

IBM AIX version 6.1

IBM AIX version 7.1

IBM AIX version 7.2

 

 

REMEDIATION

 

 

Apply fixes according to vendor’s advisory.

 

http://aix.software.ibm.com/aix/efixes/security/solaris_advisory.asc

 

 

Reading this advisory was a good start.

Make it a habit.

Rewterz publishes threat advisories ahead of mainstream cybersecurity media, informed by an AI-Native Autonomous SOC that sees regional threat actor activity in real time. Subscribe to receive each new advisory as it publishes, plus a monthly Middle East threat landscape brief drawn from our own SOC telemetry. For teams evaluating their detection coverage, a 30-minute consultation with a senior analyst is also available, at your pace, when you're ready.