November 20, 2023

Rewterz Threat Alert – Agent Tesla Malware – Active IOCs

Severity Medium Analysis Summary Agent Tesla is a very popular spyware Trojan built for the.NET framework. Since its initial appearance in 2014, this has been deployed […]

November 19, 2023

Rewterz Threat Alert – STOP (DJVU) Ransomware – Active IOCs

Severity High Analysis Summary The STOP/DJVU ransomware initially made headlines in 2018 and has since been attacking individuals all around the world. It’s widespread on torrent […]

November 19, 2023

Rewterz Threat Advisory – CVE-2023-40363 – IBM InfoSphere Information Server Vulnerability

Severity High Analysis Summary CVE-2023-40363 IBM InfoSphere Information Server 11.7 could allow an authenticated user to change installation files due to incorrect file permission settings. Impact […]

November 20, 2023

Rewterz Threat Alert – Agent Tesla Malware – Active IOCs

Severity Medium Analysis Summary Agent Tesla is a very popular spyware Trojan built for the.NET framework. Since its initial appearance in 2014, this has been deployed […]

November 19, 2023

Rewterz Threat Alert – STOP (DJVU) Ransomware – Active IOCs

Severity High Analysis Summary The STOP/DJVU ransomware initially made headlines in 2018 and has since been attacking individuals all around the world. It’s widespread on torrent […]

November 19, 2023

Rewterz Threat Advisory – CVE-2023-40363 – IBM InfoSphere Information Server Vulnerability

Rewterz Threat Advisory – PHP Multiple Denial of Service Vulnerabilities

April 5, 2019

Rewterz Threat Advisory – Google Chrome V8 Arbitrary Code Execution Vulnerability

April 5, 2019

Rewterz Threat Advisory – CVE-2018-1356 – Fortinet FortiSandbox “back_url” Cross-Site Scripting Vulnerability

April 5, 2019

Severity

Medium

Analysis Summary

CVE-2018-1356

Input passed via the “back_url” parameter in the file scan component is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user’s browser session in context of an affected site.

Impact

Cross Site Scripting

Affected Vendors

Fortinet

Affected Products

Fortinet FortiSandbox 2.x

Remediation

Upgrade to version 3.0.0 or later.

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

Rewterz Threat Alert – Agent Tesla Malware – Active IOCs

Rewterz Threat Alert – STOP (DJVU) Ransomware – Active IOCs

Rewterz Threat Advisory – CVE-2023-40363 – IBM InfoSphere Information Server Vulnerability

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

Rewterz Threat Alert – Agent Tesla Malware – Active IOCs

Rewterz Threat Alert – STOP (DJVU) Ransomware – Active IOCs

Rewterz Threat Advisory – CVE-2023-40363 – IBM InfoSphere Information Server Vulnerability

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Rewterz Threat Advisory – PHP Multiple Denial of Service Vulnerabilities

Rewterz Threat Advisory – Google Chrome V8 Arbitrary Code Execution Vulnerability