meta_pixel
Tapesearch Logo
Log in
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

ISC StormCast for Wednesday, September 23rd 2020

SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

SANS ISC Handlers

Tech News, News

4.9754 Ratings

🗓️ 23 September 2020

⏱️ 6 minutes

🔗️ Recording | iTunes | RSS

🧾️ Download transcript

Summary

Daily 5 min cyber security news summary. News, patches, vulnerabilities and trends in information and network security. Citrix ADC Updates; Firefox Update; RDP vs. Ransomware; iOS 14 Jailbreak

Transcript

Click on a timestamp to play from that location

0:00.0

Hello, welcome to the Wednesday, September 23rd, 2020 edition of the Sandcent, Sunsetter Storm Center's Stormcast.

0:08.0

My name is Johannes Ulrich, and today I'm recording from Jacksonville, Florida.

0:13.7

Citrix published a new version of the Citric Application Device Controller, Citrix ADC, Citrix Gateway, and Citrix SDWAN.

0:24.6

Now, these are, of course, products that we have seen attacked really aggressively over the last year.

0:32.2

So any update to these products should be taking serious, even though in this case, the vulnerabilities

0:38.7

aren't really all that critical.

0:42.2

We have three vulnerabilities that are being addressed with this update, CVE 2020-8245.

0:49.3

This is an HTML injection attack against the SSVPN web portal.

0:55.0

It's probably the easiest out of the three to exploit.

0:59.0

And essentially, the way this would be exploited is if an authenticated user,

1:04.0

so a user that's connected to the SSVPN is visiting a malicious web page,

1:10.0

content from that web page could be injected.

1:13.4

So that's basically how the attack would work.

1:16.8

And I don't think it's a stretch to believe that this would be not that difficult to pull off.

1:23.4

Next, CVE 2020, 8246.

1:26.8

This is denial of service attack attack, does require access to the management network, but in the past we have often seen that being exposed. No authentication required in this case, but again, only a denial of service.

1:43.9

CVE 2020, 8247, there's an escalation of prologge attack, again on the management interface,

1:52.0

and the attacker must have the privilege to execute operator commands on the management interface

2:00.2

in order for this to matter. Once the attacker has the privilege to execute the operator commands on the management interface in order for this to matter. Once the attacker has

2:02.9

the privilege to execute arbitrary commands, probably the escalation of privileges is not

2:09.5

really all that big of a deal anymore. So in short, apply the patch, but not an emergency.

2:23.3

And for Firefox users, there is an update for you Firefox 81. Aside from offering a few new features, this version of Firefox also fixes a total of six different vulnerabilities, some of which could potentially lead to arbitrary code execution.

...

Please login to see the full transcript.

Disclaimer: The podcast and artwork embedded on this page are from SANS ISC Handlers, and are the property of its owner and not affiliated with or endorsed by Tapesearch.

Generated transcripts are the property of SANS ISC Handlers and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.

Copyright © Tapesearch 2026.