Lumension® Endpoint Intelligence Center

Intelligence Center » News Archive » Kaseya patches two bugs in VSA IT management platform

Kaseya patches two bugs in VSA IT management platform

2015/07/13

Threatpost - (International) Kaseya patched two flaws in its VSA IT management platform, including open redirect vulnerability in which an unauthenticated attacker could redirect users to sites with malicious content, and a path traversal bug in which an authenticated attacker could use a specially crafted Hyptertext Transfer Protocol (HTTP) request to traverse directories and download arbitrary files.

Source: https://threatpost.com/kaseya-patches-two-bugs-in-vsa-it-management-platform/113760

Note: This news synopsis is taken from the DHS Daily Open Source Infrastructure Report, a daily [Monday through Friday, except US Federal holidays] summary of open-source published information concerning significant critical infrastructure issues; a 10-day archive of the DOSIR can be found at: http://www.dhs.gov/dhs-daily-open-source-infrastructure-report.


Last Updated: 27 May 2016 10:24:41