Next Page >>
security management
=======================================================================
title: Symlink Following and Second-Order Symlink
Vulnerabilities in Multiple Check Point Security Management Products
product: Check Point Security Management
* Multi-Domain Security Management / Provider-1
* SmartCenter
vulnerable version: multiple products, see sections below
fixed version: multiple products, see sections below
CVE number: CVE-2011-2664
impact: high
http://labs.idefense.com/intelligence/vulnerabilities/
Dec 24, 2007
I. BACKGROUND
Novell ZENworks Endpoint Security Management (ESM) Security Client
provides centrally managed, policy based firewall protection for
clients. It is designed to be installed on all workstations within the
enterprise. More information is available on the vendor's site at the
following URL.
Summary
=======
Cisco IronPort Email Security Appliances (ESA) and Cisco IronPort
Security Management Appliances (SMA) contain a vulnerability that may
allow a remote, unauthenticated attacker to execute arbitrary code
with elevated privileges.
Workarounds that mitigate this vulnerability are available.
schedule and information about our past conferences:
https://deepsec.net/
The DeepSec offers a mix of different topics and aspects like current
threats and vulnerabilities, social engineering and psychological
aspects as well as security management and philosophy. Our speakers and
trainers traditionally come from the security community, companies,
hacker spaces and academic organisations.
You can submit content for three categories:
- Talks for the conference (45 minute slots)
More information is available from McAfee at:
McAfee Security Bulletin SB10005
Intrushield NSM update fixes Session Hijacking flaw
https://kc.mcafee.com/corporate/index?page=content&id=SB10005
Follow best practices of placing the security management console on a segregated management network. Apply restrictive, default-deny firewall policies to protect these assets from access by unauthorized users.
Do not perform administrative access of security management consoles from computers exposed to the Internet through web browsing, email, and other applications. Lock down and heavily monitor systems used to perform administrative tasks such as accessing security management consoles.
Details
Intrusion and Attack Response
Key Management
Privacy-Enhancing Technology
Secure Networking
Secure System Design
Security Management
Security for Mobile Code
Security for Specific Domains (e.g., E-Government, E-Business, P2P)
Security in IT Outsourcing
Security in Mobile and Wireless Networks
Security in Operating Systems
schedule and information about our past conferences:
https://deepsec.net/
The DeepSec offers a mix of different topics and aspects like current
threats and vulnerabilities, social engineering and psychological
aspects as well as security management and philosophy. Our speakers and
trainers traditionally come from the security community, companies,
hacker spaces and academic organisations.
You can submit content for three categories:
- Talks for the conference (45 minute slots)
* Rootkit Detection, Techniques, and Defense
* Security Properties of Web-Frameworks
* Malicious Code Analysis
* Secure Framework Design
* .NET and Java Security
* Security Management
Please note, that we are a non-product, non-vendor biased security
conference and do not welcome vendor pitches in the conference talks or
trainings. We will provide an opportunity for vendor self presentation
through sponsorship and vendor booths in the conference lounge, where
- Messaging Technologies
- Network Protocols
- Operating Systems
- Patch & Upgrade Management
- Secure Software Development
- Security Management
- Social Engineering
- Virtualisation
- VoIP Technology
- Web Security
- Wireless Technology
- Messaging Technologies
- Network Protocols
- Operating Systems
- Patch & Upgrade Management
- Secure Software Development
- Security Management
- Social Engineering
- Virtualisation
- VoIP Technology
- Web Security
- Wireless Technology
- Malware Research
- Messaging Technologies
- Network Protocols
- Operating Systems
- Secure Software Development
- Security Management
- Social Engineering
- Virtualisation
- VoIP Technology
- Web Security
- Wireless Technology
More information is available from McAfee at:
McAfee Security Bulletin SB10004
Intrushield NSM update fixes XSS flaw
https://kc.mcafee.com/corporate/index?page=content&id=SB10004
Follow best practices of placing the security management console on a segregated management network. Apply restrictive, default-deny firewall policies to protect these assets from access by unauthorized users.
Do not perform administrative access of security management consoles from computers exposed to the Internet through web browsing, email, and other applications. Lock down and heavily monitor systems used to perform administrative tasks such as accessing security management consoles.
Details
- Malware Research
- Messaging Technologies
- Network Protocols
- Operating Systems
- Secure Software Development
- Security Management
- Social Engineering
- Virtualisation
Please note, that we are a non-product, non-vendor biased security
conference and do not welcome vendor pitches in the conference talks or
Digital Security Research Group [DSecRG] Advisory #DSECRG-08-028
Application: Velocity web-server (a part of Velocity Security Management System)
Versions Affected: Old version 1.0
Vendor URL: http://hirschelectronics.com
Bugs: Directory traversal File Download
Exploits: YES
Reported: 03.03.2008
* cybersecurity
* database security
* denial of service protection
* distributed systems security
* electronic commerce security
* enterprise security management
* forensics
* identification & authentication
* identify management
* incident response planning
* information survivability
Workshops:
- Social Engineering Training for IT Security Professionals
- Attacks on GSM & GPRS Networks
- SAP Security In-Depth
- 360 Degree Security Management using BMIS
- Web Hacking - Attacks, Exploits and Defense
- Hacking IPv6 Networks
- The Art of Exploiting Injection Flaws
If you need to evaluate your own security, do penetration testing or have to
update that shipped with AVPack 8.1.3.5 on the 09/01/2009
14/01/2009 : Avira states that all products have been affected
except "Securityy Management Center" and the "Internet Update
Manager". "Das bedeutet im Prinzip wirklich alle Produkte, ausser
Produkte wie eben das Security Management Center oder der Internet
Update Manager"
14/01/2009 : Release of this advisory
CA Gateway Security 9.0
How to determine if the installation is affected
- From the CA Gateway Security Management Console, select About to view
version information. If the version displayed is less than 8.1.0.69,
the installation is vulnerable.
Solution
systems in action. The only way that can be done is by attacking it
every way possible, pushing the impossible, and see why and how the
security breaks. That’s exactly what the OSSTMM does.
During past ISO meetings, the Subcommittee 27, mostly known for its
ISO/IEC 27000 family (Information Security Management System) and
ISO/IEC 15408 (Common Criteria), already discussed the topic within
different working groups (WG) with no clear outcome. Meanwhile, some
ISECOM members, like Dr. Fabio Guasconi in Italy and Heiko Rudolph
together with Aaron Brown in Germany, have become active participants
in their respective ISO national bodies to help inform their ISO
** TOPICS **
The areas of interest are broad and include, but are not restricted to, the
following areas:
Security management
LOPD: Data protection legality issues.
New techniques in vulnerability exploitation
Security/Insecurity in WiFi infrastructures
Honey Pots
Intrusion detection
* Security in mobile systems
* Computer security incident response teams (CSIRTs): creation,
management, experiences
* Security in corporate environments, compliance and auditing, return on
security investments
* Security management (procedures, operational logs, records, etc.)
* Risk management in Information Security
* Computer forensics
* Protection of privacy
* Legal aspects relating to computer security
###################################################################################
####################
1. Description:
####################
Pooya site builder (psb) is an easy to use database driven web content management and security management system. It allows you to create, edit & web content instantly using just a browser, psb provides all essential feature you need for running your own business websites (you can even use it for large websites, without the complexity of unused functions).
####################
2. Vulnerabilities:
####################
2.1. Injection Flaws. SQL Injection in "/utils/getXsl.aspx" in "xslIdn" parameter.
3. *Vulnerability Description*
The LANDesk division of Avocent Corporation [1] provides systems
management, security management, service desk, asset management, and
process management solutions to organizations. The company's software is
used worldwide.
A security vulnerability was discovered in LANDesk Management Suite: The
Landesk web application does not sufficiently verify if a well-formed
update that shipped with AVPack 8.1.3.5 on the 09/01/2009
14/01/2009 : Avira states that all products have been affected
except "Securityy Management Center" and the "Internet Update
Manager". "Das bedeutet im Prinzip wirklich alle Produkte, ausser
Produkte wie eben das Security Management Center oder der Internet
Update Manager"
14/01/2009 : Release of this advisory
> action. The only way that can be done is by attacking it every way
> possible, pushing the impossible, and see why and how the security
> breaks. That’s exactly what the OSSTMM does.
>
> During past ISO meetings, the Subcommittee 27, mostly known for its
> ISO/IEC 27000 family (Information Security Management System) and
> ISO/IEC 15408 (Common Criteria), already discussed the topic within
> different working groups (WG) with no clear outcome. Meanwhile, some
> ISECOM members, like Dr. Fabio Guasconi in Italy and Heiko Rudolph
> together with Aaron Brown in Germany, have become active participants in
> their respective ISO national bodies to help inform their ISO colleagues
0x01 : Vendor description of software
-------------------------------------
From the vendor website:
"evalSMSI is a web application, developed in PHP / MySQL, to evaluate the
Information Security Management System for some entities."
0x02 : Vulnerability details
----------------------------
evalsmsi 2.1.03 contains multiple vulnerabilities.
o Infrastructure Security (Wireless, Bluetooth, OS, Device etc)
o Browser Security
o Regulations (PCI, SoX 404, Clause 49 , ISO etc.)
* Rapidfire Sessions (30 Minutes): These sessions are focused around Information Security Management issues that will be addressed through:
o Business Case
o Panel Talk / Open Discussion with more than one speaker
o Upto speed (Old attack vector, new attack technique)
Overview:
Quote from http://www.rimatrix5.com/ :
"The Computer Multi Control Top-Concept (CMC-TC) from Rittal is
a complete security management for preventive protection to guard
against consequential costs, and is the central organisational unit
for linking to the facility management.
...
Processing Unit II (PU II) the nerve centre of the CMC-TC monitoring
system. The PU II is the coordinator between the sensor unit and the
* Security in mobile systems
* Computer security incident response teams (CSIRTs): creation,
management, experiences
* Security in corporate environments, compliance and auditing, return on
security investments
* Security management (procedures, operational logs, records, etc.)
* Risk management in Information Security
* Computer forensics
* Protection of privacy
* Legal aspects relating to computer security
** TOPICS **
The areas of interest are broad and include, but are not restricted to, the
following areas:
Security management
LOPD: Data protection legality issues.
New techniques in vulnerability exploitation
Security/Insecurity in WiFi infrastructures
Honey Pots
Intrusion detection
Next Page>>
|
