all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Detecting CVE-2022-26937 with Zeek

Add to bookmarks
May 26, 2022, 6:53 p.m. | /u/corelight_inc

cybersecurity www.reddit.com

This month, [**Microsoft announced a vulnerability in NFS**](https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26937). The exploit lies in how an attacker can force a victim NFS server to request an address from the attacker’s fake NFS server. The address returned will overflow memory on the victim NFS server and cause a crash. Through [**Microsoft’s MAPP program**](https://www.microsoft.com/en-us/msrc/mapp), [Corelight Labs](https://corelight.com/company/corelight-labs/recent-research) reviewed a proof-of-concept exploit for this vulnerability and wrote a [**Zeek®**](https://zeek.org/)\-based detection for it. 

Get the details: [https://corelight.com/blog/detecting-cve-2022-26937-with-zeek](https://corelight.com/blog/detecting-cve-2022-26937-with-zeek)

cve cve-2022-26937 cybersecurity zeek

Visit resource

More from www.reddit.com / cybersecurity

2x Actively Exploited Cisco CVEs in Adaptive Security Compliance (ASA) & Firepower Threat Defense (FTD) 3 hours ago | www.reddit.com
actively exploited adaptive security asa cisco +15
Ring customers get $5.6 million in privacy breach settlement 4 hours ago | www.reddit.com
breach customers cybersecurity privacy +3
FTC bans non competes. F yeah. 7 hours ago | www.reddit.com
bans cybersecurity ftc non
Has anyone tried SentinelOne's Purple AI? What are your thoughts on it? 8 hours ago | www.reddit.com
cybersecurity purple purple ai sentinelone +1
Is experience more valuable than a degree ? 8 hours ago | www.reddit.com
analyst cybersecurity cybersecurity analyst experience +6
Suspected NK hackers infect AV service of Avast using MITM 8 hours ago | www.reddit.com
cybersecurity
Faking domains in google ads? 10 hours ago | www.reddit.com
case cybersecurity don found +13
Incident Response Guide and IRGuideBook 11 hours ago | www.reddit.com
application article artifact cybersecurity +11
Can you help me to understand the very different figures I see in Mandiant's "M-Trends … 13 hours ago | www.reddit.com
attacker breach can compromise +19

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Security Officer Hospital - Major Hospital Account - Full-Time - Healthcare Security

@ Allied Universal | Anaheim, CA, United States
View on infosec-jobs.com

Product Security Lead

@ Lely | Maassluis, Netherlands
View on infosec-jobs.com

Summer Associate, IT Information Security (Temporary)

@ Vir Biotechnology, Inc. | San Francisco, California, United States
View on infosec-jobs.com

Director, Governance, Risk and Compliance - Corporate

@ Ryan Specialty | Chicago, IL, US, 60606
View on infosec-jobs.com

Cybersecurity Governance, Risk, and Compliance Engineer

@ Emerson | Shakopee, MN, United States
View on infosec-jobs.com
View more jobs