Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


ForumsIT Pro and developerslog4j 0-day exploit - remote code execution
jamesrt

1666 posts

Uber Geek
+1 received by user: 946

ID Verified
Trusted
Lifetime subscriber

#291880 11-Dec-2021 10:31
Send private message

https://www.lunasec.io/docs/blog/log4j-zero-day/

An actively-exploited 0-day vulnerability in the Java log4j module has been announced; this issue allows remote execution of arbitrary code; meaning a successful attacker can take control of the server.

Read the link for advice and mitigation/patching detail.

Potential to impact iPhones too, apparently.

CVE-2021-44228

Create new topic
jamesrt

1666 posts

Uber Geek
+1 received by user: 946

ID Verified
Trusted
Lifetime subscriber

  #2830321 11-Dec-2021 10:33
Send private message

CERT NZ link: https://www.cert.govt.nz/it-specialists/advisories/log4j-rce-0-day-actively-exploited/



MaxineN
Max
2056 posts

Uber Geek
+1 received by user: 1675

ID Verified
Trusted
Subscriber

  #2830324 11-Dec-2021 10:42
Send private message

This was a fun one to wake up to(already patched my Minecraft server this morning since that was affected too)




Ramblings from a mysterious lady who's into tech. Warning I may often create zingers.

Create new topic








Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Updates »

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.








RSS feeds
Main feed
Forums feed
Copyright
©2002-2026 Geekzone®
Site features
Geekzone BI dashboard
Geekzone Badges
Geekzone Status Page

 

Site Information
Subscribe to Geekzone
Privacy Statement
Forum Usage Guidelines (FUG)
Advertising
Trademark and copyright