March 17, 2023

Rewterz Threat Alert – Chaos Ransomware – Active IOCs

Severity High Analysis Summary Chaos is a customizable ransomware builder that emerged on June 9 2021 (in underground forums) by falsely marketing itself as the .NET […]

March 17, 2023

Rewterz Threat Advisory – Multiple Adobe ColdFusion Vulnerabilities

Severity High Analysis Summary CVE-2023-26361 CVSS:4.9 Adobe ColdFusion could allow a remote authenticated attacker to traverse directories on the system. An attacker could send a specially […]

March 17, 2023

Rewterz Threat Alert – Ursnif Banking Trojan aka Gozi – Active IOCs

Severity Medium Analysis Summary Ursnif banking trojan also known as Gozi and Dreambot has been around for more than 10 years. It gained popularity in 2015 […]

March 17, 2023

Rewterz Threat Alert – Chaos Ransomware – Active IOCs

Severity High Analysis Summary Chaos is a customizable ransomware builder that emerged on June 9 2021 (in underground forums) by falsely marketing itself as the .NET […]

March 17, 2023

Rewterz Threat Advisory – Multiple Adobe ColdFusion Vulnerabilities

Severity High Analysis Summary CVE-2023-26361 CVSS:4.9 Adobe ColdFusion could allow a remote authenticated attacker to traverse directories on the system. An attacker could send a specially […]

March 17, 2023

Rewterz Threat Alert – Ursnif Banking Trojan aka Gozi – Active IOCs

Severity Medium Analysis Summary Ursnif banking trojan also known as Gozi and Dreambot has been around for more than 10 years. It gained popularity in 2015 […]

Rewterz Threat Advisory – Oracle Solaris Multiple Third Party Components Multiple Vulnerabilities

March 22, 2019

Rewterz Threat Advisory – Mozilla Firefox / Firefox ESR Multiple Vulnerabilities

March 25, 2019

Rewterz Threat Advisory – F5 Multiple Products Linux Kernel Denial of Service Vulnerability

March 25, 2019

Severity

Medium

Analysis Summary

CVE-2018-5390
Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service.\

Impact

Denial of Service

Affected Products

F5 BIG-IP Local Traffic Manager (LTM) 11.x
F5 BIG-IP Application Security Manager (ASM) 11.x
F5 BIG-IP Local Traffic Manager (LTM) 12.x
F5 BIG-IP Application Security Manager (ASM) 12.x
F5 BIG-IP Local Traffic Manager (LTM) 13.x
F5 BIG-IP Application Security Manager (ASM) 13.x
F5 BIG-IP Local Traffic Manager (LTM) 14.x
F5 TMOS 11.x
F5 BIG-IP Global Traffic Manager (GTM) 11.x
F5 BIG-IP Access Policy Manager (APM) 11.x
F5 BIG-IP Application Acceleration Manager (AAM) 11.x
F5 BIG-IP Advanced Firewall Manager (AFM) 11.x
F5 BIG-IP Analytics (AVR) 11.x
F5 BIG-IP Link Controller 11.x
F5 BIG-IP Policy Enforcement Manager (PEM) 11.x
F5 BIG-IP Access Policy Manager (APM) 12.x
F5 BIG-IP Access Policy Manager (APM) 13.x
F5 BIG-IP Advanced Firewall Manager (AFM) 12.x
F5 BIG-IP Advanced Firewall Manager (AFM) 13.x
F5 TMOS 12.x
F5 BIG-IP DNS (formerly Global Traffic Manager (GTM)) 12.x

Remediation

Update to version 14.1.0, 13.1.1.4, 12.1.4, 11.6.4 or 11.5.9.

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

Rewterz Threat Alert – Chaos Ransomware – Active IOCs

Rewterz Threat Advisory – Multiple Adobe ColdFusion Vulnerabilities

Rewterz Threat Alert – Ursnif Banking Trojan aka Gozi – Active IOCs

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

Rewterz Threat Alert – Chaos Ransomware – Active IOCs

Rewterz Threat Advisory – Multiple Adobe ColdFusion Vulnerabilities

Rewterz Threat Alert – Ursnif Banking Trojan aka Gozi – Active IOCs

Threat Insights

About Us

Our Leadership

CSR

Connect with Us