The Latest in IT Security

Vulnerabilities Can Allow Hackers to Create Backdoors in Comtrol Industrial Gateways

14
Jan
2021
Vulnerabilities Can Allow Hackers to Create Backdoors in Comtrol Industrial Gateways

image credit: pixabay

A researcher at Austria-based cybersecurity consultancy SEC Consult discovered five types of vulnerabilities in Pepperl+Fuchs Comtrol industrial products, including cross-site request forgery (CSRF), reflected cross-site scripting (XSS), blind command injection, and denial-of-service (DoS) issues. The impacted products were found to leverage outdated versions of third-party components that were known to have vulnerabilities, including PHP, OpenSSL, BusyBox, Linux kernel, and lighttpd.

Related posts:
  1. Industrial Controllers Still Vulnerable to Stuxnet-Style Attacks
  2. Legacy Programming Languages Pose Serious Risks to Industrial Robots
  3. Dozens of Vulnerabilities Found in Open Source VNC Systems
  4. Siemens Fixes Vulnerabilities in SIMATIC WinCC SCADA System
  5. Threat and vulnerability management market revenue to reach $5.3 billion

Read More

Tags:  
Written by Feedproxy
0 Comments
Comments are closed.

Categories

FRIDAY, APRIL 19, 2024
WHITE PAPERS

Mission-Critical Broadband – Why Governments Should Partner with Commercial Operators:
Many governments embrace mobile network operator (MNO) networks as ...

ARA at Scale: How to Choose a Solution That Grows With Your Needs:
Application release automation (ARA) tools enable best practices in...

The Multi-Model Database:
Part of the “new normal” where data and cloud applications are ...

Featured

Archives

Latest Comments