The ProStructure Blog » Advisories

One Policy to Enforce for Android Phones Connecting to Your Corporate Wifi

Amber Pham — Thu, 23 Jun 2011 19:41:14 +0000

As reported by blogger Donovan Colbert on TechRepublic, Android devices automatically synchronize settings from your phone to Google servers so that when you log in from other devices, your settings travel with you. This is very convenient for users, but if those users have signed into your corporate wifi, the synchronized data may include your corporate WPA2 key. This is an obvious risk to the privacy of your corporate wifi network.

Businesses with wifi networks should have policies in place that state under what conditions, if any, smart phones are allowed to connect to its network. It would be wise to include a specific reference to disabling the “Backup my data” setting, usually found in the Settings/Privacy menu on Android phones.

HP System Management Homepage Security Advisory

Amber Pham — Thu, 05 May 2011 17:58:18 +0000

NIST has announced a highly exploitable flaw in the HP System Management Homepage (SMH) that can allow unauthenticated users to attack the web application over the network to ultimately execute arbitrary code on the server. The flaw has been rated with a CVSS Base Score of 10, which means it is highly exploitable and has a potentially severe impact if exploited.

All administrators using this tool to manage HP hardware over the network should upgrade HP SMH to the latest version in which the flaw has been resolved.

Critical PDF Vulnerabilities in Blackberry Enterprise Server

Amber Pham — Tue, 13 Jan 2009 22:01:39 +0000

Research in Motion has just released security bulletin KB17118 that announces a new set of vulnerabilities in the Blackberry Attachment Service that runs on Blackberry Enterprise Server (BES). According to Blackberry, “these vulnerabilities could enable a malicious individual to send an email message containing a specially crafted PDF file, which when opened for viewing on a BlackBerry smartphone, could cause memory corruption and possibly lead to arbitrary code execution on the computer that hosts the BlackBerry Attachment Service.”

It is strongly recommended that you read bulletin KB17118, then download and install the patch, called Service Pack 6 Interim Security Software Update 2, from http://www.blackberry.com/go/serverdownloads. The security bulletin also offers a workaround that reduces the functionality of BES but protects the server from exploits of the Attachment Service vulnerabilities.

The affected versions of the server software are BlackBerry Enterprise Server software version 4.1 Service Pack 3 (4.1.3) through 4.1 Service Pack 6 (4.1.6), including the latest maintenance release.

Heads Up! Big vulnerabilities in Cisco PIX, VMware and Mac OSX

Irving Popovetsky — Mon, 09 Jun 2008 16:41:43 +0000

Last week, quite a few major vulnerabilities were discovered in some of our customer’s favorite products, namely:

VMWare (all products, from ESX Server all the way down to VMware Player)
Cisco PIX and ASA (versions 7.1, 7.2, 8.0 and 8.1)
Mac OS X (Both Server and Client editions, 10.4 and 10.5 are affected)

Quite a few of these vulnerabilities are remotely exploitable and especially dangerous on the PIX and unprotected OSX and VMware installations. VMware also looks like it may have a local “VM breakout” bug or two, watch out for these. We strongly recommend getting these products updated as soon as possible.

For more information and relevant links, check out the US-CERT Cyber Security Bulletin SB08-161. Search for the product you’re running on this page.