https://blog.cafecomcloud.com.br/tags/cve/Recent content in Cve on Café Com CloudHugo -- gohugo.ioen-usTue, 14 Aug 2018 23:20:15 -0300https://blog.cafecomcloud.com.br/2018/08/14/dear-boss-its-time-to-patch../Tue, 14 Aug 2018 23:20:15 -0300https://blog.cafecomcloud.com.br/2018/08/14/dear-boss-its-time-to-patch../<p>I know. Its hard (even today) to get an planned downtime for your database. But when you tell your boss what this vulnerability can do, trust me, you&rsquo;ll get your window.</p> <p>Some days ago, I receive the CVE-2018-3110 details. First of all, you know what a CVE is?</p> <p>CVE comes from Common Vulnerabilities and Exposures, so its not a &ldquo;Oracle only&rdquo; space. Every product (from middleware, processors, linux, switches to routers) have a dictionary of vulnerabilities.</p> <p>So, what this CVE states?</p> <p><img alt="CVE-2018-3110" loading="lazy" sizes="(max-width: 767px) calc(100vw - 30px), (max-width: 1023px) 700px, (max-width: 1279px) 950px, 1232px" src="https://blog.cafecomcloud.com.br/images/cve-2018-3110.jpg"></p> <p>So, what?? 9.9 of 10? Affected plataforms are windows, linux, unix (so all plataforms, right?)</p> <p>I cant make a how to about exploiting this..but check the image below and make some tests ( on your lab, please)</p> <p><img alt="CVE-2018-3110-exploit" loading="lazy" sizes="(max-width: 767px) calc(100vw - 30px), (max-width: 1023px) 700px, (max-width: 1279px) 950px, 1232px" src="https://blog.cafecomcloud.com.br/images/cve-2018-3110-exploit.jpg"></p> <p>Its time to patch my friends.</p> <p>See you around.</p>