About this site

Previous work

Projects

   

   

   

   

   

   

   

   

   

   

Remote code execution

Retrieved 2023-10-23

  • SolarWinds fixed three critical RCE flaws in its Access Rights Manager product

    • Retrieved 2023-10-20

  • Critical SolarWinds RCE Bugs Enable Unauthorized Network Takeover
  • Critical RCE flaws found in SolarWinds access audit solution

    • Retrieved 2023-10-16

  • (2816) From Hexacon 2023 - A Demonstration of CVE-2022-47504: An RCE in SolarWinds NPM (YouTube)

    • Retrieved 2021-07-17

  • Microsoft suspects hacker attacks on SolarWinds in another country

    • Retrieved 2021-07-15

  • SolarWinds Cyberattack: Chinese Hackers Behind SolarWinds Attack, Says Microsoft
  • Microsoft links SolarWinds hacker group to China
  • CVE-2021-35211 (SolarWinds Serv-U Managed File Transfer buffer overflow)
  • Chinese Attack Group Exploiting SolarWinds Zero Day (Decipher)
  • 'Chinese hackers behind SolarWinds attack' Says Microsoft (Sentinelassam)
  • Chinese hackers behind new SolarWinds software attack: Microsoft
  • Microsoft: SolarWinds cyberattack operated by hackers from China: Microsoft, IT Security News, ET CISO
  • Daily Roundup: SolarWinds Patches Critical Zero-Day Bug (Opera News)
  • According to Microsoft, Chinese hackers used a SolarWinds exploit to carry out attacks

    • Retrieved 2021-07-14

  • Microsoft Says SolarWinds Serv-U Zero-Day Exploited by Chinese Group (SecurityWeek.Com)
  • SolarWinds Releases Patch for Active Vulnerability in Serv (U Software – Computer – News)
  • Microsoft: Chinese Hackers Use Zero-Day to Exploit SolarWinds Software (Tech Times)
  • Microsoft attributes new SolarWinds attack to a Chinese hacker group (NewsBeezer)
  • Microsoft says new SolarWinds zero-day was exploited by China (based threat actor)
  • Chinese hackers behind SolarWinds attack: Microsoft
  • Chinese threat actor exploited zero-day SolarWinds (ExBulletin)
  • SolarWinds Patches Critical Zero-Day Bug Amid Targeted Attacks (SDxCentral)

    • Retrieved 2021-07-13

  • SolarWinds Issues Hotfix for Zero-Day Flaw Under Active Attack (tpost)
  • A New Critical SolarWinds Zero-Day Vulnerability Reported (Cyberintel Magazine)
  • SolarWinds, Alerted By Microsoft, Patches Serv-U Vulnerability (MSSP Alert)
  • Microsoft links Serv-U zero-day attacks to Chinese hacking group (The Record by Recorded Future)
  • SolarWinds 0-day gave Chinese hackers privileged access to customer servers (ars)
  • New SolarWinds vulnerability under attack: RCE in Serv (U file sharing tool)
  • Chinese hacking group DEV-0322 behind Solarwinds Serv (U 0day attacksSecurity Affairs)

    • Retrieved 2021-07-12

  • SolarWinds patches critical Serv (U vulnerability exploited in the wild)
  • SolarWinds patches critical Serv (U vulnerability exploited in the wild – News Block)
  • Microsoft discovers critical SolarWinds zero-day under active attack (ars)
  • SolarWinds fixes critical Serv-U zero (day exploited in the wildSecurity Affairs)
  • Microsoft Discovers SolarWinds Critical Zero-Day Under Active Attack (Insider Voice)
  • SolarWinds Discloses Zero-Day Under Active Attack (NewsOpener)
  • Microsoft detects critical SolarWinds zero (day during active attack)
  • SolarWinds says unknown hackers exploited newly discovered software flaw (Reuters)
  • SolarWinds Discloses Zero (Day Under Active Attack)
  • Another zero-day vulnerability in SolarWinds Serv (U product exploited by cyber criminals)
  • SolarWinds releases security advisory after Microsoft discovers vulnerability (ZDNet)
  • SolarWinds issues software update – one it wrote for a change (to patch hole exploited in the wild • The Register)
  • SolarWinds Serv-U FTP and Managed File Transfer CVE-2021-35211: What You Need to Know (Rapid7 Blog)
  • SolarWinds releases patch for actively exploited zero (day vulnerability)
  • SolarWinds warns of ‘targeted’ breach by hackers exploiting new software flaw (MarketWatch)
  • Solarwinds Serv-U Zero-Day Vulnerability: Dataprise Defense Digest (Dataprise)
  • SolarWinds issues yet another emergency patch after hackers strike again (TechRadar)
  • Remote code execution in SolarWinds Serv (U)
  • Microsoft warns SolarWinds customers that Serv-U is under attack (TechCentral.ie)
  • SolarWinds patches critical Serv-U vulnerability (July 2021) (Born's Tech and Windows World)
  • SolarWinds released security advisory for critical Serv-U vulnerability (Cloud7 News)
  • SolarWinds Issues Patches in Wake of Zero (Day Attacks – Threat.Technology)
  • SolarWinds patches sensitive Serv-U Vulnerability used in the Wild (Xiarch Solutions Private Limited)
  • BreachExchange: SolarWinds Confirms New Zero (Day Flaw Under Attack)
  • SolarWinds Zero-Day Critical New Vulnerability Under Active Attack – . (FR24 News English)
  • SolarWinds Identifies, Patches Critical Vulnerability in Serv-U (My TechDecisions)
  • SolarWinds releases security advisory after Microsoft discovers vulnerability (ZDNet)

    • Retrieved 2021-07-09

  • SolarWinds Trust Center Security Advisories (CVE-2021-35211)

    • Retrieved 2021-04-18

  • Samir on Twitter: "if you see an instance of dwDrvInst.exe (unsigned by Solarwinds) running with cmdline like "smartcard -install" that could be a sign of successful RCE exploitation of CVE-2019 (3980 https://t.co/FyZvQ2IYVj https://t.co/8OIarbbqeQ" / Twit)

    • Retrieved 2021-03-30

  • ZDI-21-373 (Zero Day Initiative)

    • Retrieved 2021-03-29

  • SolarWinds Patches Four New Vulnerabilities in Their Orion Platform

    • Retrieved 2021-03-26

  • Solarwinds Orion Platform updates fix two remote code execution issuesSecurity Affairs
  • New, critical vulnerability discovered that could let attackers gain entry to SolarWinds systems (The Cyber Security News)
  • New, critical vulnerability could give attackers access SolarWinds systems
  • Solarwinds Orion Platform Has New Code Execution Flaws
  • SolarWinds Orion Platform < 2020.2.5 Multiple Vulnerabilities (Tenable®)
  • New, critical vulnerability could give attackers access SolarWinds systems (PG-Intel)
  • SolarWinds Orion Update Fixes New Holes (ISSSource)

    • Retrieved 2021-03-25

  • New Code Execution Flaws In Solarwinds Orion Platform (SecurityWeek.Com)
  • Another Critical RCE Flaw Discovered in SolarWinds Orion Platform
  • Another Critical RCE Flaw Discovered in SolarWinds Orion Platform (Times News Express)
  • Another serious RCE flaw found on the SolarWinds Orion platform (Jioforme)
  • SolarWinds patches critical code execution bug in Orion Platform
  • New, critical vulnerability discovered that could let attackers gain entry to SolarWinds systems (TerabitWeb Blog)

    • Retrieved 2021-02-11

  • SolarWinds Orion Bug Allows Easy Remote-Code Execution and Takeover (tpost)

    • Retrieved 2021-02-05

  • Multiple new SolarWinds vulnerabilities have been uncovered (TechRadar)

    • Retrieved 2020-12-31

  • The Real Culprit Behind SolarWinds: Remote Code Execution

    • Contents copyright Ciexinc.com 2024; All rights reserved
    Cookie policy: This site neither sets nor collects cookies.
    blog1.2.5/pb1.2.7