|
|
Elias Canetti (1905-94); Austrian novelist and philosopher.
- Old vulnerabilities in new devices -
Oxygen3 24h-365d, by Panda Software (http://www.pandasoftware.com)
Madrid, December 23, 2003 - The number of peripheral devices which include
TCP/IP services for a range of functions, such as remote control, is
continually increasing. Today, in Oxygen3 24h-365d we will look at why, ...........................
on many occasions, vulnerabilities detected in these services are actually old
problems that have been corrected in the oldest and most widely used
solutions.
One example of a classic vulnerability affecting web servers is directory
traversal. Although this is a very well known problem and corrected in most
web servers, such as Apache or Internet Information Server, it is present in
HTTP services in some recently created devices (printers, webcams, etc.).
To a certain extent, the persistence of old vulnerabilities lies in the
limitations of the new devices, which have less resources than PCs to store
and execute services. This means that vendors try to include 'minimalist'
software, to take care of just the basic functions.
This kind specifically designed software doesn't have the same background of
patches and security checks as more widely used solutions in servers and
computers. In many cases, even common problems that have previously been
detected and corrected are ignored.
------------------------------------------------------------
The 5 viruses most frequently detected by Panda ActiveScan, Panda Software's
free online scanner: 1)Downloader.L; 2)Parite.B; 3)Bugbear.B; 4)Blaster;
5)Blaster.E.
|
|
|
 |
|
No Comments Allowed for Anonymous, please register |
|
| |
|
Login |
|
 |
|
|
|
|
· New User? · Click here to create a registered account.
|
|
|
Article Rating |
|
|
|
|
|
|
Average Score: 0
Votes: 0
|
|
|
