Results 1 to 13 of 13

Thread: log4j - High vulnerability malware

  1. Dec 11th, 2021, 06:23 AM #1
    TysonLPrice
    TysonLPrice is offline

    Thread Starter
    Wall Poster TysonLPrice's Avatar
    Join Date
    Sep 2002
    Location
    Columbus, Ohio
    Posts
    3,837

    log4j - High vulnerability malware

    This might be the Covid-19 of the internet...

    https://www.theverge.com/2021/12/10/...ro-day-exploit

    https://www.pcmag.com/news/countless...ro-day-exploit

    I take it to be a way to inject malicious code via a error logging application common in JAVA apps. There is already a fix at the highest levels. It is a matter of getting everyone "vaccinated".
    Please remember next time...elections matter!
    Reply With Quote Reply With Quote
  2. Dec 11th, 2021, 07:33 AM #2
    wqweto
    wqweto is offline
    PowerPoster wqweto's Avatar
    Join Date
    May 2011
    Location
    Sofia, Bulgaria
    Posts
    5,169

    Re: log4j - High vulnerability malware

    The good part is that log4net is *not* impacted by the JNDI debacle so. . . waiting for the next CVE here.

    cheers,
    </wqw>

    VbAsyncSocket - Simple and thin WinSock API wrappers for VB6 | ZipArchive - A single-class pure VB6 library for zip with ASM speed | VbRtcc - Runtime Tiny C Compiler for VB6
    [VB6] Simple AES 256-bit password protected encryption | [VB6] Blur effect on GDI+ bitmaps | Fast O(N) median filter for GDI+ bitmaps impl w/ SSE2 thunks
    Reply With Quote Reply With Quote
  3. Dec 13th, 2021, 08:32 AM #3
    Niya
    Niya is offline
    Angel of Code Niya's Avatar
    Join Date
    Nov 2011
    Posts
    8,601

    Re: log4j - High vulnerability malware

    Oh my. I wonder if Windows uses this anywhere in it's guts. I know that some software requires a Java installation on Windows so it's possible. Maybe it's time for me to trigger a Windows Update.
    Treeview with NodeAdded/NodesRemoved events | BlinkLabel control | Calculate Permutations | Object Enums | ComboBox with centered items | .Net Internals article(not mine) | Wizard Control | Understanding Multi-Threading | Simple file compression | Demon Arena

    Copy/move files using Windows Shell | I'm not wanted

    C++ programmers will dismiss you as a cretinous simpleton for your inability to keep track of pointers chained 6 levels deep and Java programmers will pillory you for buying into the evils of Microsoft. Meanwhile C# programmers will get paid just a little bit more than you for writing exactly the same code and VB6 programmers will continue to whitter on about "footprints". - FunkyDexter

    There's just no reason to use garbage like InputBox. - jmcilhinney

    The threads I start are Niya and Olaf free zones. No arguing about the benefits of VB6 over .NET here please. Happiness must reign. - yereverluvinuncleber
    Reply With Quote Reply With Quote
  4. Dec 15th, 2021, 01:38 PM #4
    TysonLPrice
    TysonLPrice is offline

    Thread Starter
    Wall Poster TysonLPrice's Avatar
    Join Date
    Sep 2002
    Location
    Columbus, Ohio
    Posts
    3,837

    Re: log4j - High vulnerability malware

    We are affected by this and are scrambling with fixes. I don't know the details. I'm not in that area.
    Please remember next time...elections matter!
    Reply With Quote Reply With Quote
  5. Dec 16th, 2021, 05:02 AM #5
    FunkyDexter
    FunkyDexter is offline
    Super Moderator FunkyDexter's Avatar
    Join Date
    Apr 2005
    Location
    An obscure body in the SK system. The inhabitants call it Earth
    Posts
    7,902

    Re: log4j - High vulnerability malware

    We're getting lots of customers asking if we're affected. We're not but some of them really seem to want us to be.
    The best argument against democracy is a five minute conversation with the average voter - Winston Churchill

    Hadoop actually sounds more like the way they greet each other in Yorkshire - Inferrd
    Reply With Quote Reply With Quote
  6. Dec 16th, 2021, 10:57 AM #6
    techgnome
    techgnome is offline
    Smooth Moperator techgnome's Avatar
    Join Date
    May 2002
    Posts
    34,543

    Re: log4j - High vulnerability malware

    Attachment 183314Name: log4j-herd-immuunity.jpg Views: 209 Size: 25.1 KB
    * I don't respond to private (PM) requests for help. It's not conducive to the general learning of others.*
    * I also don't respond to friend requests. Save a few bits and don't bother. I'll just end up rejecting anyways.*
    * How to get EFFECTIVE help: The Hitchhiker's Guide to Getting Help at VBF - Removing eels from your hovercraft *
    * How to Use Parameters * Create Disconnected ADO Recordset Clones * Set your VB6 ActiveX Compatibility * Get rid of those pesky VB Line Numbers * I swear I saved my data, where'd it run off to??? *
    Reply With Quote Reply With Quote
  7. Dec 16th, 2021, 11:18 AM #7
    Niya
    Niya is offline
    Angel of Code Niya's Avatar
    Join Date
    Nov 2011
    Posts
    8,601

    Re: log4j - High vulnerability malware

    LMAO... That is so funny.
    Treeview with NodeAdded/NodesRemoved events | BlinkLabel control | Calculate Permutations | Object Enums | ComboBox with centered items | .Net Internals article(not mine) | Wizard Control | Understanding Multi-Threading | Simple file compression | Demon Arena

    Copy/move files using Windows Shell | I'm not wanted

    C++ programmers will dismiss you as a cretinous simpleton for your inability to keep track of pointers chained 6 levels deep and Java programmers will pillory you for buying into the evils of Microsoft. Meanwhile C# programmers will get paid just a little bit more than you for writing exactly the same code and VB6 programmers will continue to whitter on about "footprints". - FunkyDexter

    There's just no reason to use garbage like InputBox. - jmcilhinney

    The threads I start are Niya and Olaf free zones. No arguing about the benefits of VB6 over .NET here please. Happiness must reign. - yereverluvinuncleber
    Reply With Quote Reply With Quote
  8. Dec 16th, 2021, 02:03 PM #8
    techgnome
    techgnome is offline
    Smooth Moperator techgnome's Avatar
    Join Date
    May 2002
    Posts
    34,543

    Re: log4j - High vulnerability malware

    It gets better ... here's the full twitter thread... https://twitter.com/rickhanlonii/sta...74730279546895

    -tg
    * I don't respond to private (PM) requests for help. It's not conducive to the general learning of others.*
    * I also don't respond to friend requests. Save a few bits and don't bother. I'll just end up rejecting anyways.*
    * How to get EFFECTIVE help: The Hitchhiker's Guide to Getting Help at VBF - Removing eels from your hovercraft *
    * How to Use Parameters * Create Disconnected ADO Recordset Clones * Set your VB6 ActiveX Compatibility * Get rid of those pesky VB Line Numbers * I swear I saved my data, where'd it run off to??? *
    Reply With Quote Reply With Quote
  9. Dec 17th, 2021, 06:08 AM #9
    szlamany
    szlamany is offline
    MS SQL Powerposter szlamany's Avatar
    Join Date
    Mar 2004
    Location
    Connecticut
    Posts
    18,263

    Re: log4j - High vulnerability malware

    Quote Originally Posted by techgnome View Post
    It gets better ... here's the full twitter thread... https://twitter.com/rickhanlonii/sta...74730279546895

    -tg
    This is twitter actually funny!

    *** Read the sticky in the DB forum about how to get your question answered quickly!! ***

    Please remember to rate posts! Rate any post you find helpful - even in old threads! Use the link to the left - "Rate this Post".

    Some Informative Links:     [ SQL Rules to Live By ] [ Reserved SQL keywords ] [ When to use INDEX HINTS! ] [ Passing Multi-item Parameters to STORED PROCEDURES ]
    [ Solution to non-domain Windows Authentication ] [ Crazy things we do to shrink log files ] [ SQL 2005 Features ] [ Loading Pictures from DB ]

    MS MVP 2006, 2007, 2008
    Reply With Quote Reply With Quote
  10. Dec 17th, 2021, 08:40 AM #10
    Niya
    Niya is offline
    Angel of Code Niya's Avatar
    Join Date
    Nov 2011
    Posts
    8,601

    Re: log4j - High vulnerability malware

    Quote Originally Posted by techgnome View Post
    It gets better ... here's the full twitter thread... https://twitter.com/rickhanlonii/sta...74730279546895

    -tg
    Some of those posts are hilarious.
    Treeview with NodeAdded/NodesRemoved events | BlinkLabel control | Calculate Permutations | Object Enums | ComboBox with centered items | .Net Internals article(not mine) | Wizard Control | Understanding Multi-Threading | Simple file compression | Demon Arena

    Copy/move files using Windows Shell | I'm not wanted

    C++ programmers will dismiss you as a cretinous simpleton for your inability to keep track of pointers chained 6 levels deep and Java programmers will pillory you for buying into the evils of Microsoft. Meanwhile C# programmers will get paid just a little bit more than you for writing exactly the same code and VB6 programmers will continue to whitter on about "footprints". - FunkyDexter

    There's just no reason to use garbage like InputBox. - jmcilhinney

    The threads I start are Niya and Olaf free zones. No arguing about the benefits of VB6 over .NET here please. Happiness must reign. - yereverluvinuncleber
    Reply With Quote Reply With Quote
  11. Dec 22nd, 2021, 02:32 PM #11
    Mezer
    Mezer is offline
    New Member
    Join Date
    Dec 2021
    Posts
    1

    Re: log4j - High vulnerability malware

    New virus
    Reply With Quote Reply With Quote
  12. Dec 22nd, 2021, 02:36 PM #12
    TysonLPrice
    TysonLPrice is offline

    Thread Starter
    Wall Poster TysonLPrice's Avatar
    Join Date
    Sep 2002
    Location
    Columbus, Ohio
    Posts
    3,837

    Re: log4j - High vulnerability malware

    Quote Originally Posted by Mezer View Post
    New virus
    I don't think it is a virus, it is a vulnerability.
    Please remember next time...elections matter!
    Reply With Quote Reply With Quote
  13. Dec 22nd, 2021, 03:09 PM #13
    techgnome
    techgnome is offline
    Smooth Moperator techgnome's Avatar
    Join Date
    May 2002
    Posts
    34,543

    Re: log4j - High vulnerability malware

    Nope, not a virus.... just a vulnerability in an existing widely used logging library. Problem is, as soon as one vulnerability is patched, another hole seems to crop up. It's kind of like playing whack-a-mole. Fortunately we patched ours the easy way by simply removing all the references to lof4j ... we weren't using it anyways. We were using the API to interface with another logging system, so we didn't even need the lof4j references, so we yoinked them out and that's that. Based on the chatter though it sounds like some our sister systems weren't quite so fortunate. O.o


    -tg
    * I don't respond to private (PM) requests for help. It's not conducive to the general learning of others.*
    * I also don't respond to friend requests. Save a few bits and don't bother. I'll just end up rejecting anyways.*
    * How to get EFFECTIVE help: The Hitchhiker's Guide to Getting Help at VBF - Removing eels from your hovercraft *
    * How to Use Parameters * Create Disconnected ADO Recordset Clones * Set your VB6 ActiveX Compatibility * Get rid of those pesky VB Line Numbers * I swear I saved my data, where'd it run off to??? *
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules


Click Here to Expand Forum to Full Width