Carrie Roberts // Unauthenticated Remote Code Execution? A hacker’s best friend. And that is what we have with CVE-2017-5638 Apache Struts with working exploit code here: https://github.com/rapid7/metasploit-framework/issues/8064 Save the exploit […]

The post Strutting your stuff – Unauthenticated Remote Code Execution appeared first on Black Hills Information Security, Inc..

Mick Douglas // Current Status: – MS15-034 has remote Denial of Service (DoS) – Remote exploit code appears to be ready soon… maybe.  Stay tuned. BLUE TEAM MARCHING ORDERS: – […]

The post Waiting Is the Hardest Part: A Purple Team’s Take on MS15-034 appeared first on Black Hills Information Security, Inc..