• Trend Micro
  • About TrendLabs Security Intelligence Blog
Search:
  • Home
  • Categories
    • Ransomware
    • Vulnerabilities
    • Exploits
    • Targeted Attacks
    • Deep Web
    • Mobile
    • Internet of Things
    • Malware
    • Bad Sites
    • Spam
    • Botnets
    • Social
    • Open source
Home   »   Author / William Gamazo Sanchez (Vulnerability Research)

William Gamazo Sanchez

Vulnerability Research

CVE-2018-3211: Java Usage Tracker Local Elevation of Privilege on Windows

  • Posted on:October 17, 2018
  • Posted in:Exploits, Vulnerabilities
  • Posted by:
    William Gamazo Sanchez (Vulnerability Research)
0

We found design flaw/weakness in Java Usage Tracker that can enable hackers to create arbitrary files, inject attacker-specified parameters, and elevate local privileges. In turn, these can be chained and used to escalate privileges in order to access resources in affected systems that are normally protected or restricted to other applications or users.

We’ve worked with Oracle through our Zero Day Initiative to patch this flaw, and this has been fixed via Oracle’s October patch update. Users and businesses are accordingly urged to patch and update their version of Java.

In this blog post, we will delve into how this flaw works on Windows — how Java Usage Tracker works and defining the conditions that enabled the exploit.

Read More
Tags: CVE-2018-3211JavaJava Usage Tracker

systemd Vulnerability Leads to Denial of Service on Linux

  • Posted on:November 23, 2017
  • Posted in:Vulnerabilities
  • Posted by:
    William Gamazo Sanchez (Vulnerability Research)
0

Many Linux distributions are at risk due to a recently disclosed flaw in systemd: a flaw in its DNS resolver could cause a denial-of-service attack on vulnerable systems. The vulnerability is exploited by having the vulnerable system send a DNS query to a DNS server controlled by the attackers. The DNS server would then return a specially crafted query, causing systemd to enter an infinite loop that pins the system’s CPU usage to 100%. This vulnerability was assigned CVE-2017-15908.

Read More
Tags: CVE-2017-15908systemd

MS17-010: EternalBlue’s Large Non-Paged Pool Overflow in SRV Driver

  • Posted on:June 2, 2017
  • Posted in:Exploits, Vulnerabilities
  • Posted by:
    William Gamazo Sanchez (Vulnerability Research)
0

The EternalBlue exploit took the spotlight this month as it became the tie that bound the spate of malware attacks these past few weeks—the pervasive WannaCry, the fileless ransomware UIWIX, the Server Message Block (SMB) worm EternalRocks, and the cryptocurrency mining malware Adylkuzz.

EternalBlue (patched by Microsoft via MS17-010) is a security flaw related to how a Windows SMB 1.0 (SMBv1) server handles certain requests. If successfully exploited, it can allow attackers to execute arbitrary code in the target system. The severity and complexity of EternalBlue, alongside the other exploits released by hacking group Shadow Brokers, can be considered medium to high.

We further delved into EternalBlue’s inner workings to better understand how the exploit works and provide technical insight on the exploit that wreaked havoc among organizations across various industries around the world.

Read More
Tags: EternalBlueMS17-010Server Message Block

SLOTH Downgrades TLS 1.2 Encrypted Channels

  • Posted on:February 1, 2016
  • Posted in:Vulnerabilities
  • Posted by:
    William Gamazo Sanchez (Vulnerability Research)
0

Early last month a new vulnerability was found in how TLS 1.2 was implemented.  Researchers from the French Institute for Research in Computer Science and Automation (INRIA) called this new attack SLOTH (Security Losses from Obsolete and Truncated Transcript Hashes). An attacker with man-in-the-middle capabilities could use SLOTH to attack encrypted traffic in the following ways: decrypt…

Read More
Tags: encryptionSLOTHTLS

BIND Denial of Service Vulnerability Blamed on Windows 2000 Compatibility Code

  • Posted on:August 6, 2015
  • Posted in:Vulnerabilities
  • Posted by:
    William Gamazo Sanchez (Vulnerability Research)
0

The BIND implementation of the Domain Name System (DNS) is a critical part of the infrastructure of the Internet. For example, almost all of the 13 root name servers use BIND. On July 28 a vulnerability was published in BIND that could be anonymously exploited by an attacker. To crash the server, all an attacker would have to…

Read More
Tags: BINDMicrosoftWindows 2000
Page 1 of 212

Security Predictions for 2020

  • Cybersecurity in 2020 will be viewed through many lenses — from differing attacker motivations and cybercriminal arsenal to technological developments and global threat intelligence — only so defenders can keep up with the broad range of threats.
    Read our security predictions for 2020.

Business Process Compromise

  • Attackers are starting to invest in long-term operations that target specific processes enterprises rely on. They scout for vulnerable practices, susceptible systems and operational loopholes that they can leverage or abuse. To learn more, read our Security 101: Business Process Compromise.

Popular Posts

Sorry. No data so far.

Stay Updated

  • Home and Home Office
  • |
  • For Business
  • |
  • Security Intelligence
  • |
  • About Trend Micro
  • Asia Pacific Region (APAC): Australia / New Zealand, 中国, 日本, 대한민국, 台灣
  • Latin America Region (LAR): Brasil, México
  • North America Region (NABU): United States, Canada
  • Europe, Middle East, & Africa Region (EMEA): France, Deutschland / Österreich / Schweiz, Italia, Россия, España, United Kingdom / Ireland
  • Privacy Statement
  • Legal Policies
  • Copyright © Trend Micro Incorporated. All rights reserved.