Government of the Republic of Trinidad and Tobago                                                                                                                                        


Security Advisories

TTCSIRT-209.051519: TT-CSIRT Advisory – VMware Security Updates

VMware has released a security update stating that VMware Workstation contains a DLL hijacking issue because some DLL files are improperly loaded by the application. Successful exploitation of this issue may allow attackers with normal user privileges to escalate their privileges to administrator on a windows host where Workstation is installed. Further information on this […]

Read More


TTCSIRT-208.051519: TT-CSIRT Advisory – Adobe Security Updates

Adobe has released a security update stating that it has discovered the following issues in the latest versions of Adobe Acrobat and Reader: a) Multiple Out-of-Bounds Read vulnerabilities that could allow for Information Disclosure – (CVE-2019-7841, CVE-2019-7836). b) Multiple Use After Free vulnerabilities that could allow for Arbitrary Code Execution – (CVE-2019-7835, CVE-2019-7834). c) A […]

Read More


TTCSIRT-207.042319: TT-CSIRT Advisory – Drupal Security Updates

Drupal has released a security update stating that the following vulnerabilities have been discovered in the Drupal Core Module: a) Validation messages were not escaped when using the form theme of the PHP templating engine which, when validation messages may contain user input, could result in an XSS – (CVE-2019-10909). b) Service IDs derived from […]

Read More


TTCSIRT-206.042319: TT-CSIRT Advisory – Cisco Security Updates

Cisco has released a security update stating that it has discovered a vulnerability in the development shell (devshell) authentication for Cisco Aironet Series Access Points (APs) where an attacker could access the development shell without proper authentication, which allows for root access to the underlying Linux OS. This vulnerability exists because the software improperly validates […]

Read More


TTCSIRT-205.040919: TT-CSIRT Advisory – Samba Security Updates

Samba Team has released a security update stating that Samba contains an RPC endpoint emulating the Windows registry service API. One of the requests, “winreg_SaveKey”, is susceptible to a path/symlink traversal vulnerability. Unprivileged users can use it to create a new registry hive file anywhere as they have unix permissions to create a new file […]

Read More


TTCSIRT-204.040919: TT-CSIRT Advisory – Apache Security Updates

Apache has released a security update stating that in Apache HTTP Server 2.4 releases, a race condition in mod_auth_digest when running in a threaded server could allow a user with valid credentials to authenticate using another username, bypassing configured access control restrictions. Further information on this vulnerability and how it can be mitigated can be […]

Read More


TTCSIRT-203.031819: TT-CSIRT Advisory – Intel Security Updates

Intel has released a security update stating that a potential security vulnerability in Intel® USB 3.0 Creator Utility may allow for escalation of privileges. This vulnerability is due to improper permissions in the Intel(R) USB 3.0 Creator Utility. Further information on this vulnerability and how it can be mitigated can be found on the Intel […]

Read More


TTCSIRT-202.031819: TT-CSIRT Advisory – Adobe Security Updates

Adobe has released a security update stating that it has found a heap corruption issue(CVE-2019-7094) within Adobe Photoshop which could allow for arbitrary code execution. Depending on the privileges associated with this application, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. If this application […]

Read More


TTCSIRT-201.022119: TT-CSIRT Advisory – Cisco Security Updates

Cisco has released a security update stating that it has discovered a vulnerability in the Open Container Initiative runc CLI tool used by multiple products which could allow an unauthenticated, remote attacker to escalate privileges on a targeted system. This issue exists because the affected software improperly handles file descriptors related to /proc/self/exe. An attacker […]

Read More


TTCSIRT-200.022119: TT-CSIRT Advisory – VMware Security Updates

VMWare has released a security update stating that it has discovered a runc container runtime vulnerability for VMware Integrated OpenStack with Kubernetes (VIO-K), VMware PKS (PKS), VMware vCloud Director Container Service Extension (CSE) and vSphere Integrated Containers (VIC). Successful exploitation of this issue may allow an attacker to overwrite the contents of a host’s runc […]

Read More