Multiple vulnerabilities in Aten PE8108 power distribution unit

Pentagrid AG

2023-04-03 11:42 (aktualisiert 2024-02-22 09:00)

Pentagrid identified several vulnerabilities in the PE8108 rack power distribution unit (PDU) manufactured by Aten. The PE8108 is an outlet-metered and switched rack-mountable PDU, which means it supports measuring power of connected devices on a per-outlet basis and allows switching individual outlets on and off. The PDU can be controlled, for example, via HTTP/HTTPS and Telnet. Therefore, the PDU provides authentication and supports multiple users with the option to restrict a user's access to certain outlets. During a review, Pentagrid found authorization checks to be broken in several places, which might lead to a compromise of the appliance. Since the main purpose of the PDU is to distribute power to data center components, the main threat is that attackers switch off parts of the infrastructure.

Credit card statement disclosure vulnerability in Viseca's eXpense portal

Pentagrid AG

2023-03-20 04:23

As a security company we try to use services that are solid, trustworthy and secure and therefore we do our due diligence if we find the time for it. Checking products for IT security issues in a non-intrusive way is a part of that. You can call it supply chain security if you like.

To avoid scanning credit card paper statements sent by snail mail every month, Pentagrid was looking for an option to receive them electronically. For our bank though, the only option was to sign up for Viseca's eXpense platform, which allows access to business credit card statements in PDF format. However, uppon login into the portal for the first time, our experienced analyst's gut feeling told us something is not right. For example, the second-factor authentication when doing a login on the eXpense platform was simply typing the last four digits of our telephone number. And that's definitely not state-of-the-art security.

We decided to have a quick look. Our experience in web application security analysis told us that the download function for PDF statements was a good candidate to have a look at. We've seen this kind of functionality fail in many applications before. You may guess, what happened.

Ein Open-Source-SMS-Gateway für Pentest-Projekte

Pentagrid AG

2022-12-06 09:23

Zugänge für mobile Anwendungen sind oft an Telefonnummern gebunden. Die Arbeit mit mehreren Personen an einem Projekt kann es irgendwann erfordern, Mobiltelefonnummern für den SMS-Empfang zu teilen. Beim Testen mobiler Anwendungen, die durch eine SMS-basierte Second-Factor-Authentisierung (2FA) geschützt sind, ist die gemeinsame Nutzung von Telefonnummern durch das Testteam manchmal notwendig und sicherheitstechnisch akzeptabel, wenn es sich nur um ein Testsystem handelt. Bei Pentagrid betreiben wir daher ein kleines SMS-Gateway, das wir hiermit als Open Source veröffentlichen.

Mehrere Verwundbarkeiten in SEPPmail 11.1.10

Pentagrid AG

2022-11-15 10:00

Während eines Penetrationstests identifizierte Pentagrid mehrere Schwachstellen in der E-Mail-Gateway-Software SEPPmail in der Version 11.1.10 des Schweizer Unternehmens Seppmail AG. Die Gateway-Lösung dient dem Transfer vertraulicher E-mails.

Reflected cross-site scripting vulnerability in Crealogix EBICS implementation (CVE-2022-3442)

Pentagrid AG

2022-10-10 10:00 (aktualisiert 2024-03-18 15:23)

During a penetration test of an Electronic Banking Internet Communication Standard (EBICS) environment, Pentagrid observed a vulnerability in the EBICS banking implementation developed by CREALOGIX AG and used by many banks. EBICS is a common standard in Germany, France and Switzerland for sending payment information from customers to banks and between banks.

Improving web application security testing with the Pentagrid Scan Controller

Pentagrid AG

2022-08-23 13:42

We're back with another helpful Portswigger Burp Pro Proxy extension that you shouldn't miss if you do web application security analysis. This time the wasteful approach of Burp's feature "Actively scan all in-scope traffic" triggered the development of a new extension called Pentagrid Scan Controller, because there are several improvements possible and desirable.

Vulnerabilities in Printix Cloud Print Management

Pentagrid AG

2022-08-18 08:42

During a penetation test of a cloud environment, Pentagrid observed vulnerabilities in the cloud printing solution developed by Printix.net ApS, a Kofax subsidiary.

We are hiring Security Analysts

Pentagrid AG

2022-08-11 08:00

To extend our technical team at Pentagrid, we are looking for talented people with an interest in new things, passion for technology and commitment. Currently, we are looking for Junior and Senior IT Security Analysts in Berlin and Buchs SG.

Teaching Burp a new HTTP Transport Encoding

Pentagrid AG

2022-04-13 11:42

Today we would like to talk about Burp Suite Professional and extensions again. In this blog post we explain how we can teach Burp Suite to handle a custom Transport Encoding that is spoken between an HTTP client and a server by using Burp extensions.

Response Overview Burp Extension

Pentagrid AG

2022-01-12 15:30

Today we would like to announce the release of an updated BurpSuite extension in the BApp store.