The Latest in IT Security

Expert Finds Remote Code Execution Vulnerability on eBay – Video

14
Dec
2013

German security engineer David Vieira-Kurz has identified a vulnerability on the Southeast Asia subdomain of eBay (sea.ebay.com). The security hole, caused by a type-cast issue in combination with complex curly syntax, could have been exploited by a remote attacker to execute arbitrary code.

The expert says he has only exploited the vulnerability to the point where he could prove its existence to eBays security team. However, he believes cybercriminals might h…

Comments are closed.

Categories

TUESDAY, MARCH 19, 2024
WHITE PAPERS

Mission-Critical Broadband – Why Governments Should Partner with Commercial Operators:
Many governments embrace mobile network operator (MNO) networks as ...

ARA at Scale: How to Choose a Solution That Grows With Your Needs:
Application release automation (ARA) tools enable best practices in...

The Multi-Model Database:
Part of the “new normal” where data and cloud applications are ...

Featured

Archives

Latest Comments