Original release date: December 20, 2014 Broadband routers employing the Allegro RomPager firmware prior to versions 4.34 contain a vulnerability in HTTP cookie processing code. Exploitation of this vulnerability could allow a remote attacker to take control of an affected device.
Wow! This week’s been such a busy news week that the information security (InfoSec) stories kept pouring in, long after I finished this week’s video. The latest? CERT just warned about some critical vulnerabilities in NTPd, a popular network time protocol (NTP) service that many network devices and software uses
Vulnerability Note VU#561444 Multiple broadband routers use vulnerable versions of Allegro RomPager Original Release date: 19 Dec 2014 | Last revised: 19 Dec 2014 Overview Multiple broadband routers use vulnerable versions of Allegro RomPager in current firmware releases. Description Many home and office/home office (SOHO) routers have been found to be using vulnerable versions of the Allegro RomPager embedded web server. Allegro RomPager versions prior to 4.34 contain a vulnerability in cookie processing code that can be leveraged to grant attackers administrative privileges on the device.
VU#1680209: AppsGeyser generates Android applications that fail to properly validate SSL certificates
Vulnerability Note VU#1680209 AppsGeyser generates Android applications that fail to properly validate SSL certificates Original Release date: 19 Dec 2014 | Last revised: 19 Dec 2014 Overview AppsGeyser generates applications that fail to properly validate SSL certificates.
VU#843044: Multiple Dell iDRAC IPMI v1.5 implementations use insufficiently random session ID values
Vulnerability Note VU#843044 Multiple Dell iDRAC IPMI v1.5 implementations use insufficiently random session ID values Original Release date: 18 Dec 2014 | Last revised: 18 Dec 2014 Overview The Intelligent Platform Management Interface (IPMI) v1.5 implementations in multiple Dell iDRAC releases are vulnerable to arbitrary command injection due to use of insufficiently random session ID values. Description CWE-330 : Use of Insufficiently Random Values – CVE-2014-8272 The IPMI v1.5 implementations in multiple Dell iDRAC releases, including versions of iDRAC6 modular/monolithic and iDRAC7, are vulnerable to arbitrary command injection due to use of predictable and limited session ID values. Session IDs are assigned incrementally rather than randomly, enabling an authenticated user to predict subsequent session IDs based on his own session.
This video provides an overview of McAfee Complete Endpoint Protection for Business (CEB) for Managed Services Providers.
This video provides a configuration tutorial for McAfee ePolicy Orchestrator (ePO) MSPs.
Alert Logic published a widely publizised blog outlining a common configuration problem with Polkit. To help with dissemination, Alert Logic named the vulnerability Grinch  .
Vulnerability Note VU#315340 EMC Documentum products contain multiple vulnerabilities Original Release date: 15 Dec 2014 | Last revised: 15 Dec 2014 Overview EMC Documentum products including Content Server, D2, and Web Development Kit (WDK) contain multiple vulnerabilities. Description EMC Documentum Content Server, D2, and WDK contain numerous vulnerabilities of varying impact. For details, view our spreadsheet .