You are here

Home
News Items

Exploits Discovered - Published CVE-2017-14681

Security News, Business News - Sep 21, 2017
Title: P3Scan privilege escalation via PID file manipulationAuthor: Michael OrlitzkyFixedin:SummaryThe p3scan daemon creates its PID file after dropping privileges to a non-root user. That may be exploited (through init scripts or other management tools) by the unprivileged user to kill root process...
Read More...

Exploits Discovered - Published CVE-2017-14609

Security News, Business News - Sep 20, 2017
Title: Kannel privilege escalation via PID file manipulationAuthor: Michael OrlitzkyFixedin:SummaryThe Kannel daemons create their PID files after dropping privileges to a non-root user. That may be exploited (through init scripts or other management tools) by the unprivileged user to kill root proc...
Read More...

Exploits Discovered - Published CVE-2017-14483

Security News, Business News - Sep 15, 2017
Title: Gentoo dev-python/flower privilege escalation via PID file manipulationAuthor: Michael OrlitzkyFixedin:SummaryThe Gentoo dev-python/flower package before 0.9.1 gives ownership of its PID file directory to the daemon's runtime user. That can be exploited by the runtime user to kill root proces...
Read More...

Exploits Discovered - Published CVE-2017-14484

Security News, Business News - Sep 15, 2017
Title: Gentoo sci-mathematics/gimps root privilege escalation via init scriptAuthor: Michael OrlitzkyFixedin:SummaryThe Gentoo sci-mathematics/gimps package before 28.10-r1 allows local users to gain root privileges by creating a hard link under /var/lib/gimps, because an unsafe chown -R command is...
Read More...

Baltimore Business Journal ranks Metro Data, Inc. as Top-50 "Veteran Owned Businesses"

Business News ( Hunt Valley, Maryland ) - Sep 14, 2017
The Baltimore Business Journal (BBJ) ranks Metro Data, Inc. as one of 2016's Top-50 "Veteran Owned Businesses" in the Baltimore region as published in the September 8-14, 2017 Newspaper.  About the Baltimore Business JournalThe Baltimore Business Journal, where you'll find the latest...
Read More...

Exploits Discovered - Published CVE-2017-14312

Security News, Business News - Sep 11, 2017
Title: Nagios core root privilege escalation via insecure permissionsAuthor: Michael OrlitzkyFixedin:SummaryNagios installs two sets of files with insecure permissions: after installation, the executables and the configuration files are all owned by the same unprivileged user and group (typically, n...
Read More...

Exploits Discovered - Published CVE-2017-14159

Security News, Business News - Sep 05, 2017
Title: OpenLDAP privilege escalation via PID file manipulationAuthor: Michael OrlitzkyFixedin:SummaryThe slapd daemon in all versions of OpenLDAP creates a PID file after dropping privileges to a non-root account. That may be exploitable by the non-root account to kill root processes, because any ro...
Read More...

Exploits Discovered - Published CVE-2017-14102

Security News, Business News - Sep 01, 2017
Title: MIMEDefang privilege escalation via PID file manipulationAuthor: Michael OrlitzkyFixedin: Version 2.81SummaryMIMEDefang 2.80 and earlier creates a PID file after dropping privileges to a non-root account. This is exploitable by that non-root account to kill root processes, because the init sc...
Read More...

Exploits Discovered - Published CVE-2017-13649

Security News, Business News - Aug 23, 2017
Title: UnrealIRCd privilege escalation via PID file manipulationAuthor: Michael OrlitzkyFixedin:SummaryUnrealIRCd (all versions) creates a PID file after dropping privileges to a non-root account. That may be exploitable by the non-root account to kill root processes, because any root script (for ex...
Read More...

Exploits Discovered - Published CVE-2017-12847

Security News, Business News - Aug 14, 2017
Title: Nagios core privilege escalation via PID file manipulation​Author: Michael OrlitzkyFixedin: commits 1b19734 and 3baffa7, version 4.3.3SummaryNagios 4.3.2 and earlier creates a PID file after dropping privileges to a non-root account. This is exploitable by that non-root account to kill root p...
Read More...

Pages

Under no circumstances should you send an email to ackbar@viabit.com .

Managed I.T. Services

The difference with our "Metro Manage I.T." model is that we proactively monitor your systems and keep them up-to-date and healthy.  

Read More

Hardware Sales & Support

Whether you're in need of computer support, networking monitoring, hardware or software, Metro Data is the one-stop solution for all of your business and corporate technology needs.

Read More

Email Hosting and Filtering

We offer filtering services to stop the constant flow of junk mail before it ever makes it into your inbox. Let Metro Data be your one stop shop for all your I.T. needs!

Read More

Partnerships
Dell Technologies - Authorize Partner
Linux
Lenovo Business Partner
Microsoft Partner
Cisco Systems Partner