{"id":22702,"date":"2018-05-03T15:59:12","date_gmt":"2018-05-03T13:59:12","guid":{"rendered":"https:\/\/pitss.org\/de\/?p=22702"},"modified":"2018-06-12T11:05:30","modified_gmt":"2018-06-12T09:05:30","slug":"oracle-weblogic-server-cve-2018-2628","status":"publish","type":"post","link":"https:\/\/pitss.org\/de\/oracle-weblogic-server-cve-2018-2628\/","title":{"rendered":"Oracle WebLogic Server in Gefahr! So verhindern Sie Schlimmeres"},"content":{"rendered":"

[et_pb_section bb_built=“1″ fullwidth=“on“ _builder_version=“3.0.74″ background_image=“https:\/\/pitss.org\/de\/wp-content\/uploads\/sites\/9\/2017\/08\/blog-2-header-v3-min.jpg“ next_background_color=“#ffffff“][et_pb_fullwidth_header title=“PITSS Tech Blog“ subhead=“News zu Java, PL\/SQL, Entwicklung & Technologiewechsel“ background_layout=“dark“ text_orientation=“center“ background_overlay_color=“rgba(0,0,0,0.53)“ _builder_version=“3.2.1″ title_font_size=“36px“ subhead_font_size=“22px“ max_width_tablet=“50px“ background_color=“rgba(255, 255, 255, 0)“]<\/p>\n

 <\/p>\n

[\/et_pb_fullwidth_header][\/et_pb_section][et_pb_section bb_built=“1″ specialty=“on“ background_position_1=“top_left“ background_position_2=“top_left“ background_repeat_1=“no-repeat“ background_repeat_2=“no-repeat“ _builder_version=“3.0.69″ prev_background_color=“#000000″ next_background_color=“#000000″][et_pb_column type=“3_4″ specialty_columns=“3″][et_pb_row_inner admin_label=“Row“ custom_padding=“29.6833px|0px|0|0px“ _builder_version=“3.0.69″][et_pb_column_inner type=“4_4″ saved_specialty_column_type=“3_4″][et_pb_text _builder_version=“3.2.1″ module_alignment=“left“ background_layout=“light“]<\/p>\n

Oracle WebLogic Server in Gefahr! So verhindern Sie Schlimmeres<\/h1>\n

 <\/p>\n

[\/et_pb_text][et_pb_team_member _builder_version=“3.2.1″ name=“by Stephan La Rocca“ position=“Business Development, PITSS GmbH“ twitter_url=“https:\/\/twitter.com\/StephanLaRocca“ image_url=“https:\/\/pitss.org\/de\/wp-content\/uploads\/sites\/9\/2018\/05\/stephanlarocca.jpg“ header_font_size=“16″ max_width=“50%“ \/][et_pb_text _builder_version=“3.2.1″ module_alignment=“left“]<\/p>\n

Die amerikanische IT Security Firma Greynoise<\/a> berichtet aktuell von stark erh\u00f6hten Scanning Aktivit\u00e4ten nach verwundbaren WebLogic Servern. F\u00fcr diese stehen zwar schon Updates bereit, welche aber von den Angreifern offenbar bereits umgangen werden k\u00f6nnen, da die Updates nicht das Kern des Problems beheben. Besonders kritisch scheint die Schwachstelle mit der Kennung CVE-2018-2628 zu sein.<\/strong><\/p>\n

[\/et_pb_text][et_pb_image src=“https:\/\/pitss.org\/de\/wp-content\/uploads\/sites\/9\/2018\/05\/Post_greynoise.png“ _builder_version=“3.2.1″ show_in_lightbox=“on“]<\/p>\n

 <\/p>\n

[\/et_pb_image][et_pb_text _builder_version=“3.2.1″ module_alignment=“left“]<\/p>\n

Schwachstelle schlie\u00dfen und TCP-Port 7001 blockieren<\/h2>\n

Wer Oracle WebLogic Server nutzt, sollte entsprechend unbedingt aktiv werden. Zum einen ist schnellstm\u00f6glich die aktuellste Version zu installieren. Das allein scheint aber nicht auszureichen. Der Sicherheitsforscher Kevin Beaumant<\/a> warnt, dass mit dem aktuellsten Patch nicht die eigentliche Sicherheitsl\u00fccke geschlossen, sondern lediglich bestimmte Befehle auf die Blacklist gesetzt wurden. Daher ist es wichtig, zus\u00e4tzlich den TCP-Port 7001 zu blockieren um keine externen Zugriffe zu erm\u00f6glichen.<\/p>\n

[\/et_pb_text][et_pb_image src=“https:\/\/pitss.org\/de\/wp-content\/uploads\/sites\/9\/2018\/05\/post_kevinbreaumont.png“ _builder_version=“3.2.1″ show_in_lightbox=“on“]<\/p>\n

 <\/p>\n

[\/et_pb_image][\/et_pb_column_inner][\/et_pb_row_inner][\/et_pb_column][et_pb_column type=“1_4″][et_pb_search exclude_pages=“on“ exclude_posts=“off“ include_categories=“118,189,147,199,19,173,175,176,5,112,180,18,150,141,153,142,200,144,190,80,185,177,137,159,96,161,99,113,191,192,201,25,162,202,203,82,97,105,106,151,107,108,194,193,156,186,154,121,100,3,69,148,195,85,131,170,115,86,160,87,145,117,196,114,138,2,133,83,164,165,98,143,139,109,157,166,110,158,111,102,167,155,168,197,163,84,101,4,171,204,140,116,178,174,136,187,179,103,1,198,172,152,169,188,91,104,92,149″ placeholder=“Artikel suchen“ button_color=“#006bb3″ _builder_version=“3.0.74″ button_text_color=“#ffffff“ module_alignment=“left“ hide_button=“off“]<\/p>\n

 <\/p>\n

[\/et_pb_search][et_pb_sidebar orientation=“right“ area=“et_pb_widget_area_1″ _builder_version=“3.0.74″]<\/p>\n

 <\/p>\n

[\/et_pb_sidebar][et_pb_button button_url=“https:\/\/pitss.org\/de\/techblog“ button_text=“\u2191 Zur\u00fcck zur \u00dcbersicht“ button_alignment=“center“ _builder_version=“3.0.74″ custom_button=“on“ button_text_size=“16″ button_text_color=“#9b9b9b“ button_border_color=“#d2d2d2″ button_letter_spacing=“0″]<\/p>\n

 <\/p>\n

[\/et_pb_button][\/et_pb_column][\/et_pb_section][et_pb_section bb_built=“1″ _builder_version=“3.0.47″ prev_background_color=“#000000″][et_pb_row _builder_version=“3.0.47″ background_size=“initial“ background_position=“top_left“ background_repeat=“repeat“][et_pb_column type=“4_4″][et_pb_comments _builder_version=“3.0.106″ show_avatar=“on“ show_reply=“on“ show_count=“off“ background_layout=“light“ header_font_size_tablet=“51″ header_line_height_tablet=“2″ custom_button=“off“ button_icon_placement=“right“]<\/p>\n

 <\/p>\n

[\/et_pb_comments][\/et_pb_column][\/et_pb_row][\/et_pb_section]<\/p>\n","protected":false},"excerpt":{"rendered":"

  Oracle WebLogic Server in Gefahr! So verhindern Sie Schlimmeres   Die amerikanische IT Security Firma Greynoise berichtet aktuell von stark erh\u00f6hten Scanning Aktivit\u00e4ten nach verwundbaren WebLogic Servern. F\u00fcr diese stehen zwar schon Updates bereit, welche aber von den Angreifern offenbar bereits umgangen werden k\u00f6nnen, da die Updates nicht das Kern des Problems beheben. Besonders kritisch scheint die Schwachstelle mit der Kennung CVE-2018-2628 […]<\/p>\n","protected":false},"author":44,"featured_media":22701,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_et_pb_use_builder":"on","_et_pb_old_content":"","_et_gb_content_width":"","footnotes":""},"categories":[3,81],"tags":[287,66,285,286],"class_list":["post-22702","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-home-page-featured","category-tech-blog","tag-it-security","tag-oracle","tag-oracle-wls","tag-weblogic-server"],"_links":{"self":[{"href":"https:\/\/pitss.org\/de\/wp-json\/wp\/v2\/posts\/22702","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/pitss.org\/de\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/pitss.org\/de\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/pitss.org\/de\/wp-json\/wp\/v2\/users\/44"}],"replies":[{"embeddable":true,"href":"https:\/\/pitss.org\/de\/wp-json\/wp\/v2\/comments?post=22702"}],"version-history":[{"count":10,"href":"https:\/\/pitss.org\/de\/wp-json\/wp\/v2\/posts\/22702\/revisions"}],"predecessor-version":[{"id":22716,"href":"https:\/\/pitss.org\/de\/wp-json\/wp\/v2\/posts\/22702\/revisions\/22716"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/pitss.org\/de\/wp-json\/wp\/v2\/media\/22701"}],"wp:attachment":[{"href":"https:\/\/pitss.org\/de\/wp-json\/wp\/v2\/media?parent=22702"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/pitss.org\/de\/wp-json\/wp\/v2\/categories?post=22702"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/pitss.org\/de\/wp-json\/wp\/v2\/tags?post=22702"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}