Hello, welcome to the Friday, August 6, 2021 edition of the Sandtonet Stormsenders Stormcast.

My name is Johannes Ulrich and the time recording from Stockholm, Germany.

Cisco released a number of updates today.

At the top of these updates are a critical vulnerability in the Cisco RV 340 and 345 small business

routers.

These routers have had a very rich vulnerability history and yet again do we have arbitrary code

execution or denial of service without authentication on

these devices by sending crafted HTTP requests? No exact details, how this exactly happens,

what the exact nature of the vulnerability is other than an urgent request to patch the

vulnerable firmware and of course not to expose your admin interfaces on devices like this.

Like I mentioned, there was a rich history of similar vulnerabilities in the past.

I would also be a little bit careful with the

similar devices that may be end of life that are not explicitly listed in this advisory.

And TrustWaves Spider Lab came across an interesting vulnerability in Telegram on Mac OS affecting self-destructing messages.

This is a difficult feature to implement correctly.

The idea is that as soon as a user opens a message, it will self-destruct, meaning all

evidence of the message will be deleted from the recipient's system.

The problem is that even before a user actually opens the message within Telegram,

a copy of the message in particular media files are written to a cache file.

A user is now able to open the cache file without triggering the self-destruct logic,

and that way the image remains on the recipient's system. I don't think there's really sort of

a bulletproof way to implement these self-destruct messages. A user should always be able

...