The Download
Following on the heels of the regreSSHion vulnerability, a new related vulnerability has just been disclosed. Tracked as CVE-2024-6409, the new bug is related to the regreSSHion vulnerability CVE-2024-6387. The new vulnerability also provides remote code execution to an attacker when executed. From an attacker point of view, the new vulnerability provides another avenue from which to exploit OpenSSH (a remote login service) even if the regreSSHion vulnerability is patched,.
What You Can Do
OpenSSH is a core service offered in most Linux distros and is often used by system administrators to remotely manage and maintain their systems. As such it is externally facing and provides a key attack surface for adversaries when vulnerable. Linux has already released packages for patching CVE-2024-6409. Microsoft has confirmed its software is not vulnerable to the regreSSHion vullnerability CVE-2024-6387. So that is some good news for Windows systems administrators. Do you know your attack surface? Scan with ThreatMate to find out today.
To Learn More: