|
Thomas via plug on 29 Nov 2023 08:23:06 -0800
|
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]
- From: Thomas via plug <plug@lists.phillylinux.org>
- To: jeff <jeffv@op.net>, Philadelphia Linux User's Group Discussion List <plug@lists.phillylinux.org>
- Subject: Re: [PLUG] ownCloud vuln
- Date: Wed, 29 Nov 2023 11:22:55 -0500
- Arc-authentication-results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=epistulae.net; dmarc=pass action=none header.from=epistulae.net; dkim=pass header.d=epistulae.net; arc=none
- Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=+BWIVWFAGd8BDAxJRVTfNAcJPtlIe2iylT+TBq5ceJg=; b=lrRkFqcBQ8FPa+rXIsB9Q0yLzqmk1ubGCQpnU3rcAaEJJK+dpRDpJzyMnh2NZRPJQs9CwkCFwkpFBiXeVU+tD4CBc5yoTMI1mAFMDoJAwT3sX8KLNJPAGTI3wzn6TCjFavbDguCuQH1rGF9xXhC9RyhQ/n92PEqZ5lq/AkcPiyG6Zey+NMWrQJfYWu2oBvaPpp7tA38HzeUriPq0fljoVT815ZWuoFPbJxVfU+i68I98brPePrv1OqjceEopU/Nr2qgEpoeEr5L3heIjU6Kk/qnxTG3j1Mrs16Onv2H7hpHZua4WfSsc41dgWvCnKzBxxKdbTtFfbav1rrr4N9+ABQ==
- Arc-seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=f1U/XH9gBMBJ2aQvJe0pmZIVmOp5kiJFA9QCtikWQYCaGXMXXnPJrS87DnYYg81+02GWpAeFUgaplh8HxxnXIXtcU+ZOpESid/U+T19FkUZ3DkIGpkBjHUOK/vUmcxm8ptttJZ5pZ0DfXxW/Aotf5Ia6mBhrCfAKXAdQEsM9hnN379kfOocQjb+ulpHt1CLlGJOcZfxD+2fXi8vgN7a8n+C3KFn12pBaERsRgilnvEtEjZ2IbZCLOmVHTmglmeJG/SHSmsQ2cr8DYZYa2KzOS/K/KP67EoMwJyU7LSOWmjFN0QGCwJdH4r1YsjvPBkti5wDnxYRD8e6CZRnnwJjyCg==
- Authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=epistulae.net;
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=epistulae.net; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=+BWIVWFAGd8BDAxJRVTfNAcJPtlIe2iylT+TBq5ceJg=; b=fExX007NBgE7ZvxNBBLRZLyjiBG8nTh/K1J8qoT/fsVROot54B3MscexSvNroKMWlLU8GMM/DrwWnUWJgkc4KzG0LQyypgkaQj/R37NqkbZPmCkVpJ8oOUQAtdqF0bDqPP2hAOqMlCDvOxVShI4lRZliykM25rYxheEeiAx1wU8ZkulIHti9nBNnMuIntnCGSqOurecAVOfBvdjPoOSUIvaE7XzKH7fJYauDj9vuWlczsdadxaNAc4b7uXPrbmeFMF5hYviv1Pvl73fGRFFyv/9xPBim4BzpGBUSs8uj/LV6RIbeolwBMn+MczLnorFqmCXakI8MI1SkqBfhEqMnBg==
- Reply-to: Thomas <thomas.plug@epistulae.net>
- Sender: "plug" <plug-bounces@lists.phillylinux.org>
- User-agent: Mozilla Thunderbird
On 29/11/2023 09:34, jeff via plug wrote:
ownCloud vulnerability with maximum 10 severity score comes under “mass”
exploitation
https://arstechnica.com/security/2023/11/owncloud-vulnerability-with-a-maximum-10-severity-rating-comes-under-mass-exploitation/
Easy-to-exploit flaw gives hackers passwords and cryptographic keys to
vulnerable servers.
If... you're running ownCloud (which is not the same as NextCloud).
And... you're running it as a container.
If you're running nextCloud, this is a good place to occasionally run
your server through: https://scan.nextcloud.com/
___________________________________________________________________________
Philadelphia Linux Users Group -- http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion -- http://lists.phillylinux.org/mailman/listinfo/plug