Public
- Public
- Network
- Groups
- Featured
- Popular
- People

Conversation

Notices

Embed this notice
Will Dormann (wdormann@infosec.exchange)'s status on Wednesday, 12-Feb-2025 04:07:26 JST Will Dormann

For folks still running Ivanti stuff for some reason, you've got work to do.
Again.
CVE-2025-22467 is a CVSS 9.9 stack buffer overflow RCE.
https://forums.ivanti.com/s/article/February-Security-Advisory-Ivanti-Connect-Secure-ICS-Ivanti-Policy-Secure-IPS-and-Ivanti-Secure-Access-Client-ISAC-Multiple-CVEs

In conversation about 3 months ago from infosec.exchange permalink
- Kevin Beaumont repeated this.
- Embed this notice
  Will Dormann (wdormann@infosec.exchange)'s status on Wednesday, 12-Feb-2025 04:07:26 JST Will Dormann
  in reply to
  
  With the release of ICS 22.7R2.6, Ivanti has apparently discovered the value of compiling in exploit mitigations. (many of which have been around for 22 years)
  With R2.6, the web server, despite still being 32-bit, has stack canaries, full relro, and some fortify.
  Baby steps, I suppose...
  In conversation about 3 months ago permalink
  Attachments
  1. checksec.py output for R2.5 web binary no canary partial relro no fortify
    https://media.infosec.exchange/infosec.exchange/media_attachments/files/113/986/754/473/889/014/original/e090677bd3fc279a.png
  2. checksec.py output for R2.6 web binary stack canary full relro some fortify
    https://media.infosec.exchange/infosec.exchange/media_attachments/files/113/986/755/259/795/114/original/2d2a9d7d0878776c.png

Feeds