Initiatives pour
En tant qu'autorité nationale en matière de cybersécurité, le CCB a développé plusieurs initiatives destinées à des publics spécifiques, qui sont présentées ici.
Critical vulnerability fixed in SNIProxy
Image
Publié : 11/04/2023
Reference:
Advisory #2023-039
Version:
1.0
Affected software:
SNIProxy version 0.6.0 and earlier
Type:
Buffer Overflow
CVE/CVSS:
CVE-2023-25076
Sources
Talos Intelligence - https://talosintelligence.com/vulnerability_reports/TALOS-2023-1731
Risks
If your SNIProxy configuration contains wildcards, an attacker can use a buffer overflow vulnerability to achieve arbitrary code execution or a denial of service.
Description
When HTTP, TLS, or DTLS packages are handled by the wildcard backend, a malicious packet can trigger a buffer copy without checking the size of the input (CWE-120 Classic Buffer Overflow).
Recommended Actions
The Centre for Cybersecurity Belgium recommends system administrators to patch vulnerable systems as soon as possible and to analyse system and network logs for any suspicious activity.
Update the installation to the latest version:
* Version 0.6.1 or newer
References
SNIProxy Patch - https://github.com/dlundquist/sniproxy/commit/f8d9a433fe22ab2fa15c00179048ab02ae23d583