Zoho zero-day published on Twitter

guest · Mar 6, 2020

Zoho zero-day published on Twitter
March 6, 2020
https://www.zdnet.com/article/zoho-zero-day-published-on-twitter/

A security researcher published yesterday details on Twitter about a zero-day vulnerability in a Zoho enterprise product.

Cyber-security experts who have reviewed the vulnerability have told ZDNet that the zero-day could spell trouble for companies around the world, as it could be an entry point for ransomware gangs to infect corporate networks and ransom their data.
The vulnerability impacts the Zoho ManageEngine Desktop Central.

Yesterday, a security researcher named Steven Seeley, published details, along with proof-of-concept demo code, about an unpatched bug in this product.

"This vulnerability allows remote attackers to execute arbitrary code on affected installations of ManageEngine Desktop Central," Seeley said.
This effectively means that hackers can take full control over ManageEngine systems, and a company's fleet of devices.
Click to expand...

MORE THAN 2,300 EXPOSED SERVERS
Currently, there are more than 2,300 installations of Zoho ManageEngine systems exposed on the internet, according to Nate Warfield, an analyst for the Microsoft Security Response Center.

All of these 2,300 exposed instances are akin to gateways into those companies, due to the recently-shared zero-day.
In an interview with ZDNet, Leandro Velasco, a threat intel analyst for KPN Security, also pointed out that this vulnerability is also ideal for lateral movement.
Click to expand...

SRC-2020-0011 : ManageEngine Desktop Central FileStorage getChartImage Deserialization of Untrusted Data Remote Code Execution Vulnerability

CVSS Score:
9.8
Click to expand...

guest · Mar 6, 2020

mood said: ↑

Zoho zero-day published on Twitter March 6, 2020
Click to expand...

Update:

Updated to add that the vulnerability, now tracked as CVE-2020-10189, has been patched in Zoho ManageEngine Desktop Central v10.0.479.
Click to expand...

guest · Mar 6, 2020

Zoho Releases Security Update on ManageEngine Desktop Central
March 6, 2020
https://www.us-cert.gov/ncas/curren...-security-update-manageengine-desktop-central

Zoho has released a security update on a vulnerability (CVE-2020-10189) affecting ManageEngine Desktop Central build 10.0.473 and below. A remote attacker could exploit this vulnerability to take control of an affected system. ManageEngine Desktop Central is a unified endpoint management solution that helps companies, including managed service providers (MSPs), to control servers, laptops, smartphones, and tablets from a central location.

The Cybersecurity and Infrastructure Security Agency encourages users and administrators to review the Zoho security update for more information and apply the patch.
Click to expand...

Log in or Sign up

Zoho zero-day published on Twitter

guest Guest

guest Guest

guest Guest

Log in or Sign up

Zoho zero-day published on Twitter

guest Guest

guest Guest

guest Guest

Useful Searches