This report is a daily analysis of all published vulnerabilities in any product, weaknesses in technologies, exploits Internet wide, current internet threats associated with platforms and products our customer use, and if any action is required to protect their assets from these these vulnerabilities, weaknesses and exploits depending on the Atomicorp product they are using.
Please see this forum post for an explanation of the categories used in this report.
CVEs are sometimes created after a vulnerability is published (sometimes far after it has been made public). When CVEs are referenced, it is because a CVE was created today, not because an issue was resolved today, and it is included here for reference.
ASL users
Summary: No action required.
Already protected against/Known Method/No update required
CVE-2015-3274
CVE-2015-3275
CVE-2015-5269
CVE-2015-5335
CVE-2015-5336
WebSVN 2.3.3 XSS
Oxwall Forum v1.8.1 - Persistent Cross Site Scripting Vulnerability
Fiyo CMS 2.0.2.1 - Multiple Persistent XSS Vulnerabilities
Drupal 8.0.x-dev Cross Site Scripting
Thru Managed File Transfer Portal 9.0.2 SQL Injection
Thru Managed File Transfer Portal 9.0.2 Cross Site Scripting
ferretCMS– Multiple Cross-Site Scripting Vulnerabilities
BlackBerry Enterprise Service 12 Self-Service - SQLi and Reflected XSS (when protected by the ASL WAF)
CVE-2015-5174 Apache Tomcat Limited Directory Traversal (when protected by the ASL WAF)
phpMyAdmin SQL Editor cross site scripting [CVE-2016-2045]
phpMyAdmin cross site scripting [CVE-2016-2040]
OpenCms - Cross Site Scripting
e-Cidade - Directory Traversal Vulnerability
phpMyAdmin up to 4.4.15.2/4.5.3 js/normalization.js goToFinish1NF cross site scripting
CVE-2015-5346 Apache Tomcat Session fixation
CVE-2016-2384
Not already protected against/New Method/Update Available
None.
Not already protected against/Doesnt protect against/Solution
None.
Potential Vulnerability/Solution
None.
Rules only users
Summary: Linux users that do not have the ASL secure kernel installed may be vulnerable to a kernel level exploit. See notes below.
Already protected against/Known Method/No update required
CVE-2015-3274
CVE-2015-3275
CVE-2015-5269
CVE-2015-5335
CVE-2015-5336
WebSVN 2.3.3 XSS
Oxwall Forum v1.8.1 - Persistent Cross Site Scripting Vulnerability
Fiyo CMS 2.0.2.1 - Multiple Persistent XSS Vulnerabilities
Drupal 8.0.x-dev Cross Site Scripting
Thru Managed File Transfer Portal 9.0.2 SQL Injection
Thru Managed File Transfer Portal 9.0.2 Cross Site Scripting
ferretCMS– Multiple Cross-Site Scripting Vulnerabilities
BlackBerry Enterprise Service 12 Self-Service - SQLi and Reflected XSS (when protected by a modsecurity reverse proxy with the Atomicorp rules enabled in blocking mode)
CVE-2015-5174 Apache Tomcat Limited Directory Traversal (when protected by a modsecurity reverse proxy with the Atomicorp rules enabled in blocking mode)
phpMyAdmin SQL Editor cross site scripting [CVE-2016-2045]
phpMyAdmin cross site scripting [CVE-2016-2040]
OpenCms - Cross Site Scripting
e-Cidade - Directory Traversal Vulnerability
phpMyAdmin up to 4.4.15.2/4.5.3 js/normalization.js goToFinish1NF cross site scripting
CVE-2015-5346 Apache Tomcat Session fixation
Not already protected against/New Method/Update Available
None.
Not already protected against/Doesnt protect against/Solution
Modsecurity can not protect systems from OS level attacks such as this one:
CVE-2016-2384: arbitrary code execution due to a double-free in the usb-midi linux kernel driver
Potential Vulnerability/Solution
None.