Author Archives: CIRT Team



CIRT Team

in Security Advisories & Alerts

Microsoft Internet Explorer CVE-2017-0149 Remote Memory Corruption Vulnerability

Description: Microsoft Internet Explorer 9 through 11 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka “Internet Explorer Memory Corruption Vulnerability.” This vulnerability is different from those described in CVE-2017-0018 and CVE-2017-0037. Internet Explorer 9, 10 and 11...

Read more

0
12 Apr 2017
in Security Advisories & Alerts

Microsoft Office RTF documents that leverage CVE-2017-0199 vulnerability

Description: This vulnerability allows a malicious actor to download and execute a Visual Basic script containing PowerShell commands when a user opens a document containing an embedded exploit. The vulnerability affects Microsoft Office, including the latest Office 2016 edition running on Windows 10. Impact: Researchers has observed Office documents exploiting...

Read more

0
12 Apr 2017
MoU between the Indian Computer Emergency Response Team (CERT-In) and BGD e-GOV CIRT
in Articles, English articles, News

MoU between the Indian Computer Emergency Response Team (CERT-In) and BGD e-GOV CIRT

At the end of a bilateral meeting between Sheikh Hasina, Prime Minister of Bangladesh and Narendra Modi, Prime Minister of India; 22 agreements and memorandum of understanding (Mou) have been signed at Hayadrarabad house in New Delhi between India and Bangladesh. After the meeting; defense, financial, information technology, power and energy...

Read more

0
09 Apr 2017
in Security Advisories & Alerts

Cisco Aironet 1830 Series and 1850 Series Access Points Mobility Express Default Credential Vulnerability: CVE-2017-3834

Description: The vulnerability is due to the existence of default credentials for an affected device that is running Cisco Mobility Express Software, regardless of whether the device is configured as a master, subordinate, or standalone access point. An attacker who has layer 3 connectivity to an affected device could use...

Read more

0
06 Apr 2017
in Security Advisories & Alerts

Linux Kernel CVE-2017-7184 Local Privilege Escalation Vulnerability

Description: The xfrm_replay_verify_len function in net/xfrm/xfrm_user.c in the Linux kernel through 4.10.6 does not validate certain size data after an XFRM_MSG_NEWAE update, which allows local users to obtain root privileges or cause a denial of service (heap-based out-of-bounds access) by leveraging the CAP_NET_ADMIN capability, as demonstrated during a Pwn2Own competition...

Read more

0
06 Apr 2017
in Uncategorized

DECLARATION 2017 ON STRENGTHENING CYBERSECURITY

ENDORSED AT THE INTERNATIONAL CYBERSECURITY CONFERENCE HELD ON 9 MARCH 2017  The participants of the International cybersecurity conference meeting at Bangladesh Computer Council in Dhaka, Bangladesh, on 9 March 2017, REAFFIRMING the commitments set out in the ‘Vision 2021’ to build Digital Bangladesh and transform Bangladesh into a fast developing...

Read more

0
05 Apr 2017
Page 85 of 88« First...102030...8384858687...Last »