Monday, January 28, 2019

Vulnerability Spotlight: Multiple WIBU SYSTEMS WubiKey vulnerabilities


Threat Research

Vulnerability Spotlight: Multiple WIBU SYSTEMS WubiKey vulnerabilities

Marcin “Icewall” Noga of Cisco Talos discovered these vulnerabilities.

Executive Summary

Cisco Talos discovered two vulnerabilities that could allow remote code execution and memory disclosure at the kernel level in WIBU-SYSTEMS WibuKey. WibuKey is a USB key designed to protect software and intellectual properties. It allows the users to manage software license via USB key. A third vulnerability is located in userland and can be triggered remotely, as it’s located in the network manager.

In accordance with our coordinated disclosure policy, Talos worked with WIBU SYSTEMS to ensure that these issues are resolved and that an update is available for affected customers.

Read more >>>

Share:

Tags:



from Cisco Blog » Security http://bit.ly/2S4yKnh

No comments:

Post a Comment

Note: Only a member of this blog may post a comment.