Welcome to our

Cyber Security News Aggregator

Cyber Tzar

provide a

cyber security risk management

platform; including automated penetration tests and risk assesments culminating in a "cyber risk score" out of 1,000, just like a credit score.

First slide label

Some representative placeholder content for the first slide.

Second slide label

Some representative placeholder content for the second slide.

Third slide label

Some representative placeholder content for the third slide.

Scanning for Previous Oracle WebLogic Vulnerabilities, (Sat, Oct 9th)

published on 2021-10-09 22:29:40 UTC by
Content:

In the past few weeks, I have captured multiple instance of traffic related to some past Oracle vulnerabilities that have already been patched. The first is related to a RCE (CVE-2017-10271) that can be triggered to execute commands remotely by bypassing the CVE-2017-3506 patch's limitations. The POST contains an init.sh script which doesn't appear to be available for download.

Article: Scanning for Previous Oracle WebLogic Vulnerabilities, (Sat, Oct 9th) - published about 3 years ago.

https://isc.sans.edu/diary/rss/27918
Published: 2021 10 09 22:29:40
Received: 2021 10 10 00:00:41
Feed: SANS Internet Storm Center, InfoCON: green
Source: SANS Internet Storm Center, InfoCON: green
Category: Alerts
Topic: Vulnerabilities
Views: 2