Threat Level: green Handler on Duty: Brad Duncan

SANS ISC: Vulnerability Reported in Sophos Web Appliance SANS ISC InfoSec Forums

Special Webcast: What you need to know about the crypt32.dll vulnerability. Register Now

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Vulnerability Reported in Sophos Web Appliance

Sophos has reported a combination of vulnerabilties that can be used to perform a remote privilege escalation and gain unauthorised privileged access to the the device.  Details can be found here http://www.sophos.com/en-us/support/knowledgebase/119773.aspx . 

If automatic updating is enabled the fix should be applied without further intervention. 

Mark H

Mark

391 Posts
ISC Handler

Sign Up for Free or Log In to start participating in the conversation!