Rewterz

Rewterz Threat Alert – Account Themed Malspam – Threat Indicators

March 26, 2019
Rewterz

Rewterz Threat Alert – FASTCash ISO 8583-Specific Windows Malware Identified

March 26, 2019

Rewterz Threat Advisory – Apache Tomcat SETTINGS Denial of Service Vulnerability

Severity

Low

Analysis Summary

CVE-2019-0199
The HTTP/2 implementation accepted streams with excessive numbers of SETTINGS frames and also permitted clients to keep streams open without reading/writing request/response data. By keeping streams open for requests that utilised the Servlet API’s blocking I/O, clients were able to cause server-side threads to block eventually leading to thread exhaustion and a DoS.

Impact

Denial of Service

Affected Vendors

Apache Foundation

Affected Products

Apache Tomcat 8.x
Apache Tomcat 9.x

Remediation

Update to version 9.0.16 or 8.5.38.

Reading this advisory was a good start.

Make it a habit.

Rewterz publishes threat advisories ahead of mainstream cybersecurity media, informed by an AI-Native Autonomous SOC that sees regional threat actor activity in real time. Subscribe to receive each new advisory as it publishes, plus a monthly Middle East threat landscape brief drawn from our own SOC telemetry. For teams evaluating their detection coverage, a 30-minute consultation with a senior analyst is also available, at your pace, when you're ready.