SSD Advisory – Endian Firewall Stored From XSS to Remote Command Execution Full report: http://ift.tt/2xNVJot Twitter: @SecuriTeam_SSD Weibo: SecuriTeam_SSD Vulnerability Summary The following advisory describes a stored cross site scripting that can be used to trigger remote code execution in Endian Firewall version 5.0.3. Endian Firewall is a “turnkey Linux security distribution, which is an independent, unified security management operating system. The Endian Firewall is based on a hardened Linux operating system.” Credit An independent security researcher has reported this vulnerability to Beyond Security’s SecuriTeam Secure Disclosure program. Vendor response Endian has released patches to address this vulnerability. For more information: http://ift.tt/2xUHLGb
Source: Gmail -> IFTTT-> Blogger
No comments:
Post a Comment