Are you Vulnerable to a breach due to “GHOST”?
The “GHOST” vulnerability is a serious information security issue sweeping the globe. It is a flaw affecting businesses of all sizes and industries. Digital Defense, Inc. (DDI) has teams of vulnerability researchers and personal security analysts addressing concerns, mitigating risk and answering commonly asked questions.
Q: What is the “GHOST” Vulnerability?
A: The “GHOST” vulnerability is a serious information security issue within the widely used Linux GNU C Library known as glibc that defines system calls. The flaw exposes a buffer overflow that can be triggered locally or remotely. In certain circumstances the "GHOST" vulnerability will allow attackers to take complete control of the critical externally facing business system, such as email servers.
Q: What types of systems are affected by “GHOST” Vulnerability?
A: As glibc is a common code library and most Linux systems should be presumed vulnerable unless they are running an alternative glibc version. Systems used to deliver email, provide DNS resolution, host webpages, MySQL servers, form submission applications, etc. that are running glibc 2.2 as well as Red Hat Enterprise Linux 6 & 7, Cent OS 6 & 7, Ubuntu 12.04 and Debian 7 (wheezy) may be at risk. While this flaw was first identified in November 2000, many long term support distributions did not include the update. System administrators are encouraged to monitor official vendor channels for information on how specific distributions are affected and whether a patch will be available. It’s is important to note that due to the large number of services that use glibc, after a fix has been applied all services will need to be restarted, a safer option may be to reboot the system.
Q: Can DDI test for the vulnerability associated with “GHOST”?
A: Yes! DDI has developed a robust, proprietary test that is actively validating whether or not a system is vulnerable to “GHOST”. The test can be run alone, or with the full suite of vulnerability checks available to our clients.
Q: What can a business do if they want to learn more about “GHOST” Vulnerability and how DDI can assist them in addressing the issue?
A: If you are concerned about being a victim of this flaw, we can help. DDI can help your organization through proven methodology that reduces risk and secures information and intellectual property.
To learn more, contact us at [email protected] or call 888.983.5060