Digital Edge distributes this notification as an effort to improve the IT community cybersecurity, coordinate cyber information sharing, and proactively manage cyber risks while protecting our clients.
On January 27, 2015, Qualys Security Advisory published new Linux vulnerability repot - CVE-2015-0235.
The report alerts about Linux glibc library is being vulnerable to a buffer overflow with a risk of potential remote execution and taking over the server. Linux systems that are liable to attack include:
- Debian 7 (Wheezy),
- RHEL 5/6/7
- CentOS 6/7
- Ubuntu 12.04
Even though exploit of such vulnerability is not obvious, Qualys has developed a proof of a concept when a specially crafted email can produce a remote shell to a vulnerable system.
Digital Edge will assess managed systems and work with affected clients individually.
Digital Edge security team advise all IT professionals to take this vulnerability seriously and contact us for any questions, consultations or help.
Digital Edge strives to be a trusted leader in cybersecurity and managed services in complex enterprise IT environments.