[Info-vax] gSOAP (was: Re: SAMBA and Ransomeware)
Stephen Hoffman
seaohveh at hoffmanlabs.invalid
Mon Jul 24 15:51:02 EDT 2017
On 2017-07-12 14:48:40 +0000, Neil Rieck said:
> I posted my worry about SAMBA a few weeks back but just noticed this
> blurb today.
For those of y'all using gSOAP (and IIRC, OP was...) might want to have
a look at whether CVE-2017-9765 might cause your operations any
issues... Whether for the cited cameras or other local usage, or
because of some other local use of gSOAP. Whether it effects gSOAP on
OpenVMS? No idea. Based on the NVD, probably not? But then I'd
still want to confirm that, as an (actual) RCE in network-facing code
would not be a good day.
https://nvd.nist.gov/vuln/detail/CVE-2017-9765
https://krebsonsecurity.com/2017/07/experts-in-lather-over-gsoap-security-flaw/
--
Pure Personal Opinion | HoffmanLabs LLC
More information about the Info-vax
mailing list