D-link Wireless-G Router Year Issue (Y2K-plus-13)
We have received a report from Melvin indicating that he discovered an issue with a D-Link WBR-1310 Version D Release 4.13 router "expired" when a computer could no longer get a new lease from the router. According to D-Link's website, this router would no longer be supported after January 2012 and the year reset to 2002 (valid year is 2002-2012). The D-link router needs to be a DHCP-client to the ISP's DHCP-server. If you are still using this model, when the DHCP lease expires, your router will no longer be serving the correct date and will need to be replaced. DD-WRT isn't an option because this model isn't supported. If you have already already encountered this issue, let us know via our contact page.
[1] http://www.dd-wrt.ca/site/support/router-database
-----------
Guy Bruneau IPSS Inc. gbruneau at isc dot sans dot edu
Adobe ColdFusion Security Advisory
Adobe released a security advisory which identifies three vulnerabilities (CVE-2013-0625, CVE-2013-0629, CVE-2013-0631) affecting ColdFusion for Windows, Macintosh and Unix. They have received reports that these vulnerabilities are actively being exploited. Adobe is currently planning to release a fix for January 15, 2013.
Additional information and mitigations options available here.
[1] http://www.adobe.com/support/security/advisories/apsa13-01.html
-----------
Guy Bruneau IPSS Inc. gbruneau at isc dot sans dot edu
Comments