Rewterz

Rewterz Threat Advisory – Russian language Malspam Campaign spreading Redaman Banking Malware

January 25, 2019
Rewterz

Rewterz Threat Alert: RDP Tunneling leading to network security bypass

January 25, 2019

Rewterz Threat Advisory – CVE-2019-3462 – Critical flaw in Linux APT Package Manager could Allow Remote Hack

SEVERITY: High

 

 

CATEGORY: Vulnerability

 

 

ANALYSIS SUMMARY

 

 

While using apt-get command, HTTP redirects allow Linux systems to automatically request packages from a mirror server when others are unavailable. When the first server is not able to provide the package, it responds by providing the next suitable server.

 

The code handling HTTP redirects in the HTTP transport method doesn’t properly sanitize fields transmitted over the wire. This vulnerability could be used by an attacker located as a man-in-the-middle between APT and a mirror to inject malicious content in the HTTP connection.

 

 

IMPACT

 

 

Content injection in http method.

 

 

AFFECTED PRODUCTS 

 

 

APT Packet Manager 0.8.15

 

 

REMEDIATION

 

 

Users are advised to update to version 1.4.9.

Reading this advisory was a good start.

Make it a habit.

Rewterz publishes threat advisories ahead of mainstream cybersecurity media, informed by an AI-Native Autonomous SOC that sees regional threat actor activity in real time. Subscribe to receive each new advisory as it publishes, plus a monthly Middle East threat landscape brief drawn from our own SOC telemetry. For teams evaluating their detection coverage, a 30-minute consultation with a senior analyst is also available, at your pace, when you're ready.