{"id":4134,"date":"2017-10-17T15:14:39","date_gmt":"2017-10-17T07:14:39","guid":{"rendered":"http:\/\/www.alfredivy.per.sg\/blogger\/?p=4134"},"modified":"2017-12-15T17:20:33","modified_gmt":"2017-12-15T09:20:33","slug":"notable-security-vulnerabilities-2017","status":"publish","type":"post","link":"https:\/\/www.alfredivy.sg\/blogger\/2017\/10\/notable-security-vulnerabilities-2017\/","title":{"rendered":"Notable Security Vulnerabilities for 2017"},"content":{"rendered":"

2017 has been an exciting time for discovering security vulnerabilities.\u00a0 There are some that hold your companies assets to ransom. Others can be career ending.\u00a0 So I thought to compile a list to keep track.<\/p>\n

Remember there is still 2 more months till the end of the year!<\/p>\n

    \n
  1. Teamviewer (2 or 3?) 20170218\u00a0https:\/\/www.reddit.com\/r\/teamviewer\/comments\/5us6th\/has_teamviewer_12_been_hacked\/<\/a><\/li>\n
  2. Apache Struts2 Jakarta Multipart Parser File Upload Code Execution 20170309\u00a0 https:\/\/www.theregister.co.uk\/2017\/03\/09\/apache_under_attack_patch_for_zero_day_available\/<\/a><\/li>\n
  3. WannaCry 20170512\u00a0https:\/\/en.wikipedia.org\/wiki\/WannaCry_ransomware_attack<\/a>\u00a0.\u00a0 This comes with love from NSA’s\u00a0 EternalBlu<\/a>e exploit<\/li>\n
  4. Petya \/ NonPetya\u00a020170627 https:\/\/en.wikipedia.org\/wiki\/Petya_(malware)<\/a><\/li>\n
  5. BlueBorne BlueTooth 20170912\u00a0https:\/\/www.armis.com\/blueborne\/<\/a><\/li>\n
  6. Apache Struts RCE 20170912 http:\/\/hehackernews.com\/2017\/09\/equifax-apache-struts.html<\/a>\u00a0\u00a0This is the one that got Equifax in the short and curlies<\/li>\n
  7. KRACK\u00a0(Key Reinstallation Attack) 20171016\u00a0https:\/\/en.wikipedia.org\/wiki\/KRACK<\/a><\/li>\n<\/ol>\n","protected":false},"excerpt":{"rendered":"

    2017 has been an exciting time for discovering security vulnerabilities.\u00a0 There are some that hold your companies assets to ransom. Others can be career ending.\u00a0 So I thought to compile a list to keep track. Remember there is still 2… <\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[237,59,222,238,23],"tags":[241,465,416,440,464],"class_list":["post-4134","post","type-post","status-publish","format-standard","hentry","category-security","category-servers","category-smartphones","category-software","category-work","tag-android","tag-apache","tag-bluetooth","tag-cisco","tag-vulnerabilities"],"_links":{"self":[{"href":"https:\/\/www.alfredivy.sg\/blogger\/wp-json\/wp\/v2\/posts\/4134","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.alfredivy.sg\/blogger\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.alfredivy.sg\/blogger\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.alfredivy.sg\/blogger\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.alfredivy.sg\/blogger\/wp-json\/wp\/v2\/comments?post=4134"}],"version-history":[{"count":7,"href":"https:\/\/www.alfredivy.sg\/blogger\/wp-json\/wp\/v2\/posts\/4134\/revisions"}],"predecessor-version":[{"id":4168,"href":"https:\/\/www.alfredivy.sg\/blogger\/wp-json\/wp\/v2\/posts\/4134\/revisions\/4168"}],"wp:attachment":[{"href":"https:\/\/www.alfredivy.sg\/blogger\/wp-json\/wp\/v2\/media?parent=4134"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.alfredivy.sg\/blogger\/wp-json\/wp\/v2\/categories?post=4134"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.alfredivy.sg\/blogger\/wp-json\/wp\/v2\/tags?post=4134"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}