Threat Level: green Handler on Duty: Rick Wanner

SANS ISC Internet Storm Center


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Latest Diaries

ISC StormCast for Friday, February 27th 2015 http://isc.sans.edu/podcastdetail.html?id=4375

New Feature: Subnet Report

Published: 2015-02-26
Last Updated: 2015-02-26 18:17:29 UTC
by Johannes Ullrich (Version: 1)
1 comment(s)

We do have a new way to search our data more efficiently by subnets. Right now, the data will cover recent reports to DShield and a few of external feeds that we include. You can access the new report here: https://isc.sans.edu/subnetquery.html

I am still monitoring the impact the queries have on our overall database performance. For now, you are limited to 3 queries per minute if you are not logged in. 

And as a reminder: The data is only as good as the data we receive. Please consider contributing your own data. See https://isc.sans.edu/howto.html for details. We do also access web server error logs (see: 404 project) and Kippo SSH honeypot logs.

In case of high database load, you will be redirected back tot he index page (index_cached.html), 

 

---
Johannes B. Ullrich, Ph.D.
STI|Twitter|LinkedIn

Keywords: dshield feature
1 comment(s)
ISC StormCast for Thursday, February 26th 2015 http://isc.sans.edu/podcastdetail.html?id=4373

Samba vulnerability - Remote Code Execution - (CVE-2015-0240)

Published: 2015-02-25
Last Updated: 2015-02-26 02:51:02 UTC
by Chris Mohan (Version: 1)
0 comment(s)

The Red Hat security team has released an advisory on a Samba vulnerability effecting Samba version 3.5.0 through 4.2.0rc4. "It can be exploited by a malicious Samba client, by sending specially-crafted packets to the Samba server. No authentication is required to exploit this flaw. It can result in remotely controlled execution of arbitrary code as root." [1]

A patch [2] has been released by the Samba team to address the vulnerability.


[1] https://securityblog.redhat.com/2015/02/23/samba-vulnerability-cve-2015-0240/

[2] https://www.samba.org/samba/history/security.html

Chris Mohan --- Internet Storm Center Handler on Duty

Keywords:
0 comment(s)

If you have more information or corrections regarding our diary, please share.

Recent Diaries

Samba vulnerability - Remote Code Execution - (CVE-2015-0240)
1 day ago by Chris (0 comments)

Copy.com Used to Distribute Crypto Ransomware
2 days ago by Dr. J. (2 comments)

11 Ways To Track Your Moves When Using a Web Browser
3 days ago by Dr. J. (2 comments)

Subscribing to the DShield Top 20 on a Palo Alto Networks Firewall
3 days ago by Richard (2 comments)

Leave Things Better Than When You Found Them
5 days ago by Russell (4 comments)

Fast analysis of a Tax Scam
4 decades ago by Tom (2 comments)

View All Diaries →

Latest Discussions

Please help with securing my website
created 3 weeks ago by Anonymous (0 replies)

Please help with securing my website
created 3 weeks ago by Anonymous (0 replies)

your EMET 5.1 experience?
created 1 month ago by Mallory Bobalice (4 replies)

Help to choose Information Security diploma topic
created 1 month ago by Anonymous (0 replies)

calculation on SOC human bodies required
created 1 month ago by Anonymous (0 replies)

View All Forums →

Latest News

View All News →