{
logger.error("InetAddress error:", exception);
}
try
{
Enumeration enumeration = NetworkInterface.getNetworkInterfaces();
if(enumeration != null)
while(enumeration.hasMoreElements())
{
NetworkInterface networkinterface = (NetworkInterface)enumeration.nextElement();
Enumeration enumeration1 = networkinterface.getInetAddresses();
Post some code that people can evaluate.
For starters, There's no reason why varnish ever has to run as root.
It never listens on privileged ports, and the C compiler is never
available over a network interface.
You can ask varnish to reload a configuration and recompile it, but
you'd have to have write access to the filesystem first. You an also
only cause recompilation to occur if the admin interface is up and
running, which can be easily disabled.
22 which fixes several security issues
In particular the issues are the following, sorted by impact:
* Information Disclosure:
- 17364779 NETWORKINTERFACE HASHCODE PROBLEM
- 17322679 JAVA APPLET DNS IP DISCLOSURE
* User Assisted Arbitrary Execution:
- 17322757 ZERO TERMINATOR ALLOWS JNLP SHORTCUTS
- 17322755 NEW LINES IN JNLP TITLE ARE COPIED INTO LNK FILES
* Network and WEB Attacks:
In the file "/var/cnxt/service", there is the BASE64 string "c2VydmljZTpzZXJ2aWNl" which represents
the account "service:service".
Using these credentials it is possible to login into the web administration console with admin privileges.
The previous user enables also a "secret" tab called [Change MAC Address] where it is possible (as the name implies)
to change the hardware address of the network interface.
(b) Directory Listing, Directory Traversal
The embedded webserver doesn't sanitize any kind of user input. The directory listing option is also enabled.
Using the previous account it is possible to browse every directory on the device and to retrieve the content
of any file with a simple HTTP request.
It appears it is possible to disable the IBM DataPower XS40 Security Gateway device by sending a malformed packet
to the network interface. The device will hang up itself without being able to recover from it (no auto-reboot).
Tested vulnerable firmware is 3.7.2.1
Issue fixed according to vendor in 3.8.0 and better
To trigger the effect it is necessary to have IP.destination 0.0.0.0 in the packet, so routing can only take
Introduction:
=============
Pandora FMS is a monitoring Open Source software. It watches your systems and applications, and allows you to
know the status of any element of those systems. Pandora FMS could detect a network interface down, a defacement
in your website, a memory leak in one of your server application, or the movement of any value of the NASDAQ
new technology market.
* Detect new systems in network.
* Checks for availability or performance.
# This may be necessary if you are behind some
# kind of firewall and cannot receive replies
# from outside name servers.
timeout=4; # Server timeout; this may be much shorter
# that the global timeout option.
uptest=if; # Test if the network interface is active.
interface=eth0; # The name of the interface to check.
interval=10m; # Check every 10 minutes.
purge_cache=off; # Keep stale cache entries in case the ISP's
# DNS servers go offline.
}
Summary
=======
Cisco Intrusion Prevention System (IPS) platforms that have gigabit
network interfaces installed and are deployed in inline mode contain
a denial of service vulnerability in the handling of jumbo Ethernet
frames. This vulnerability may lead to a kernel panic that requires a
power cycle to recover platform operation. Platforms deployed in
promiscuous mode only or that do not contain gigabit network
interfaces are not vulnerable.
==[ Vulnerability
During an audit of Sophos ES1000 Email Security Appliance, a Cross Site
Scripting vulnerability was discovered in its web administration interface.
Administration web interface is available on the public network interface,
over HTTPS on port 18080.
Lack of input validation for 'error' and 'go' parameters of the 'Login'
script, allows malicious JavaScript code injection.
So in summary, here are the exploitation steps:
1. Log into HyperVM/Kloxo
2. Click "Backup Home"
3. In the field labeled "Restore from file", browse for any restore file from the popup box.
4. Wait till the VM has finished restoring from backup.
5. Login. If the root user hasn't deleted these files from /tmp/backupXXXXX before bringing up the network interface, you win.
Mitigation:
After the VM is restarted, manually delete these files as the root user before anyone else reads them.
Regards,
