Lumension® Endpoint Intelligence Center

Intelligence Center » News Archive » Yahoo patches SSRF vulnerability in image processing system

Yahoo patches SSRF vulnerability in image processing system

2015/06/30

Securityweek - (International) A security researcher reported that Yahoo patched a server-side request forgery (SSRF) vulnerability affecting all of its services that required images to be processed in which an attacker could use the vulnerability to bypass controls and access data on the affected system.

Source: http://www.securityweek.com/yahoo-patches-ssrf-vulnerability-image-processing-system-researcher

Note: This news synopsis is taken from the DHS Daily Open Source Infrastructure Report, a daily [Monday through Friday, except US Federal holidays] summary of open-source published information concerning significant critical infrastructure issues; a 10-day archive of the DOSIR can be found at: http://www.dhs.gov/dhs-daily-open-source-infrastructure-report.


Last Updated: 27 May 2016 10:24:36