Author Archives: CIRT Team



CIRT Team

in Security Advisories & Alerts

Microsoft Internet Explorer CVE-2017-0149 Remote Memory Corruption Vulnerability

Description: Microsoft Internet Explorer 9 through 11 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka “Internet Explorer Memory Corruption Vulnerability.” This vulnerability is different from those described in CVE-2017-0018 and CVE-2017-0037. Internet Explorer 9, 10 and 11...

Read more

0
12 Apr 2017
in Security Advisories & Alerts

Microsoft Office RTF documents that leverage CVE-2017-0199 vulnerability

Description: This vulnerability allows a malicious actor to download and execute a Visual Basic script containing PowerShell commands when a user opens a document containing an embedded exploit. The vulnerability affects Microsoft Office, including the latest Office 2016 edition running on Windows 10. Impact: Researchers has observed Office documents exploiting...

Read more

0
12 Apr 2017
MoU between the Indian Computer Emergency Response Team (CERT-In) and BGD e-GOV CIRT
in Articles, English articles, News

MoU between the Indian Computer Emergency Response Team (CERT-In) and BGD e-GOV CIRT

At the end of a bilateral meeting between Sheikh Hasina, Prime Minister of Bangladesh and Narendra Modi, Prime Minister of India; 22 agreements and memorandum of understanding (Mou) have been signed at Hayadrarabad house in New Delhi between India and Bangladesh. After the meeting; defense, financial, information technology, power and energy...

Read more

0
09 Apr 2017
in Security Advisories & Alerts

Cisco Aironet 1830 Series and 1850 Series Access Points Mobility Express Default Credential Vulnerability: CVE-2017-3834

Description: The vulnerability is due to the existence of default credentials for an affected device that is running Cisco Mobility Express Software, regardless of whether the device is configured as a master, subordinate, or standalone access point. An attacker who has layer 3 connectivity to an affected device could use...

Read more

0
06 Apr 2017
in Security Advisories & Alerts

Linux Kernel CVE-2017-7184 Local Privilege Escalation Vulnerability

Description: The xfrm_replay_verify_len function in net/xfrm/xfrm_user.c in the Linux kernel through 4.10.6 does not validate certain size data after an XFRM_MSG_NEWAE update, which allows local users to obtain root privileges or cause a denial of service (heap-based out-of-bounds access) by leveraging the CAP_NET_ADMIN capability, as demonstrated during a Pwn2Own competition...

Read more

0
06 Apr 2017
in Uncategorized

DECLARATION 2017 ON STRENGTHENING CYBERSECURITY

ENDORSED AT THE INTERNATIONAL CYBERSECURITY CONFERENCE HELD ON 9 MARCH 2017  The participants of the International cybersecurity conference meeting at Bangladesh Computer Council in Dhaka, Bangladesh, on 9 March 2017, REAFFIRMING the commitments set out in the ‘Vision 2021’ to build Digital Bangladesh and transform Bangladesh into a fast developing...

Read more

0
05 Apr 2017
1st International Cyber Security Conference Bangladesh, 2017 has been successfully completed
in Articles, English articles, News

1st International Cyber Security Conference Bangladesh, 2017 has been successfully completed

The CIRT team of Bangladesh Computer Council is increasingly creating awareness of the need to seriously address the daunting challenges of protecting their information networks, especially those related to national security and critical infrastructures, from any attacker. Recent developments have shown that there is more to this endeavor than answering...

Read more

0
04 Apr 2017
Page 94 of 97« First...102030...9293949596...Last »