Gruppo ECP Advpress Automationtoday AI DevwWrld CyberDSA Chatbot Summit Cyber Revolution Summit CYSEC Global Cyber Security & Cloud Expo World Series Digital Identity & Authentication Summit Asian Integrated Resort Expo Middle East Low Code No Code Summit TimeAI Summit Gruppo ECP Advpress Automationtoday AI DevwWrld CyberDSA Chatbot Summit Cyber Revolution Summit CYSEC Global Cyber Security & Cloud Expo World Series Digital Identity & Authentication Summit Asian Integrated Resort Expo Middle East Low Code No Code Summit TimeAI Summit

Critical vulnerabilities addressed in WS_FTP Server by Progress Software

The implications of remediating vulnerabilities and recommended mitigation measures

Progress Software has resolved two critical vulnerabilities in WS_FTP Server, which allowed remote command execution by unauthenticated attackers. Users are recommended to update to the correct version or disable the ad hoc transfer feature.
Gruppo ECP

WE GUIDE YOUR COMPANY TO SUCCESS
Clear goals, concrete results
CONTACT US NOW

Gruppo ECP

WE GUIDE YOUR COMPANY TO SUCCESS
Clear goals,
concrete results
CONTACT US NOW

This pill is also available in Italian language

Progress Software, the company behind the MOVEit tool, recently fixed two critical vulnerabilities (CVE-2023-40044, CVE-2023-42657) in WS_FTP Server, another popular secure file transfer tool.

Exploits in the wild for CVE-2023-40044

Test code for CVE-2023-40044 has been available since Friday, and Rapid7 researchers have observed several cases of WS_FTP exploitation in the wild, with two different attack chains.

Update and vulnerability exploited (CVE-2023-40044)

CVE-2023-40044 is a .NET deserialization vulnerability that could allow an unauthenticated attacker to execute remote commands on the underlying operating system of WS_FTP Server and can be exploited via an HTTPS POST request.

Strong upgrade recommendation

Affects both versions prior to 8.7.4 and 8.8.2, it is strongly recommended to update to the correct versions. Progress added that if the upgrade is not possible, the risk of exploitation can be mitigated by removing or disabling the WS_FTP Server ad hoc transfer module.

Follow us on Twitter for more pills like this

10/02/2023 11:32

Marco Verro

Last pills

Cloudflare repels the most powerful DDoS attack ever recordedAdvanced defense and global collaboration to tackle new challenges of DDoS attacks

Silent threats: the zero-click flaw that compromises RDP serversHidden risks in remote work: how to protect RDP servers from invisible attacks

Discovery of vulnerability in Secure Boot threatens device securityFlaw in the Secure Boot system requires urgent updates to prevent invisible intrusions

North korean cyberattacks and laptop farming: threats to smart workingAdapting to new digital threats of remote work to protect vital data and infrastructures

Don’t miss the most important news
Enable notifications to stay always updated