資安新聞及事件週報 2017/2/20 ~ 2017/2/24

資安新聞及事件週報  2017/2/20 ~ 2017/2/24

1.重大弱點漏洞
  OpenSSL 存在安全性弱點
  https://www.us-cert.gov/ncas/current-activity/2017/02/16/OpenSSL-Releases-Security-Update
  https://www.openssl.org/news/secadv/20170216.txt
  https://blog.ucloud.cn/archives/1849


  Trend Micro InterScan Web Security Virtual Appliance 多個漏洞
  http://success.trendmicro.com/solution/1116672


  TP-Link 兩款路由器有漏洞　黑客可於遠程執行程式碼導致 DoS
  https://unwire.pro/2017/02/17/tp-link-routers-vulnerable/security/


  資安業者：Android for Work含有兩個中間程式攻擊漏洞
  http://times.hinet.net/news/20030360

資安新聞及事件週報 2017/2/13 ~ 2017/2/17

資安新聞及事件週報 2017/2/13 ~ 2017/2/17

1.重大弱點漏洞
  TP-Link C2和C20i漏洞
  https://pierrekim.github.io/blog/2017-02-09-tplink-c2-and-c20i-vulnerable.html


  Oracle 多個產品存在安全性弱點
  http://www.gsn-cert.nat.gov.tw/05-02-01-detail.php?cat=vul&chtip=HiNet-2017-0008


  微軟視窗 GDI32.DLL 漏洞 CVE-2017-0038
  http://securitytracker.com/id/1037845


  Server Message Block (SMB)存在弱點威脅
  http://www.gsn-cert.nat.gov.tw/05-02-01-detail.php?cat=event&chtip=HiNet-2017-0007

資安新聞及事件週報 2017/1/30 ~ 2017/2/3

資安新聞及事件週報  2017/1/30 ~ 2017/2/3

1.重大弱點漏洞
  Brocade Network Advisor CliMonitorReportServlet 漏洞(CVE-2016-8207)
  https://www.brocade.com/content/dam/common/documents/content-types/security-bulletin/brocade-security-advisory-2016-180.htm
 
  PHP PEAR 1.10.1 - 漏洞(CVE-2017-5630)
  https://www.seebug.org/vuldb/ssvid-92633
  思科 ASR 1000 系列路由器阻斷服務漏洞 CVE-2017-3820
  https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170201-asrsnmp
  瑞士佳樂能源監控設備存在高危漏洞
  http://www.secpoint.com.cn/nd.jsp?id=31&_np=2_330
  微軟視窗 Server Message Block SMBv3 阻斷服務漏洞
  http://www.kb.cert.org/vuls/id/867968
 https://isc.sans.edu/forums/diary/Windows+SMBv3+Denial+of+Service+Proof+of+Concept+0+Day+Exploit/22029/