DSL/Cable Modems Vulnerable to CSRF Attacks
For years Cross-site request forgery (CSRF) attacks have occurred on many websites and network devices, often undetected. CSRF attacks execute malicious content on a trusted site, or device, that appear to come from the victim. These attacks are often difficult to both detect and protect against. While CSRF attacks are nothing new, a security researcher named Nathan Hamiel, has recently discovered that most DSL modems (and Cable modems) are still just as vulnerable to CSRF attacks as other technologies.
BlackBerry Desktop Software ActiveX Vulnerability
GSA Reference Number: AD081204-01
Simply Put: BlackBerry Desktop Software 4.2.2 through 4.7 is vulnerable to a remote system compromise because it includes a vulnerable ActiveX control from FlexNET. An ActiveX vulnerability can be exploited through Internet Explorer by a malicious website.
SonicWALL Licensing Server Failure
Tuesday morning December 2nd one of SonicWALL’s Licensing Servers failed to respond correctly to licensing queries from SonicWALL Firewalls. Although this issue has been corrected, it left some SonicWALLs with reduced functionality. SonicWALL devices will disable all licensed content if they are unable to contact a SonicWALL server.
Previous Articles
Gladiator Research and Security
This site is here to provide security related information and articles to better protect your financial institutions. We'll be posting advisories, blog entries and trends often so be sure to check back weekly.