Lumension® Endpoint Intelligence Center

Intelligence Center » News Archive » Sophos moves to patch Web Security Appliance flaws

Sophos moves to patch Web Security Appliance flaws

2015/07/24

SC Magazine - (International) A security researcher from Info-Assure Ltd discovered two vulnerabilities in Sophos Security's Web Appliance prior to version 4.0.4 that could allow unauthenticated users to read files from the device and inject arbitrary JavaScript via its management interface.

Source: http://www.scmagazineuk.com/sophos-moves-to-patch-web-security-appliance-flaws/article/428301/

Note: This news synopsis is taken from the DHS Daily Open Source Infrastructure Report, a daily [Monday through Friday, except US Federal holidays] summary of open-source published information concerning significant critical infrastructure issues; a 10-day archive of the DOSIR can be found at: http://www.dhs.gov/dhs-daily-open-source-infrastructure-report.


Last Updated: 27 May 2016 10:24:49