Lumension® Endpoint Intelligence Center

Intelligence Center » News Archive » Yahoo, Microsoft and Orange domains affected by same remote code injection flaw

Yahoo, Microsoft and Orange domains affected by same remote code injection flaw

2014/05/19

Softpedia - (International) A researcher identified and reported a remote code injection vulnerability affecting several subdomains belonging to Yahoo, Microsoft, Orange, and others that could allow an attacker to access an administrator panel without login credentials. The vulnerability appears to be connected to an astrology content delivery network, and Yahoo, Orange, and Microsoft closed the vulnerabilities once informed.

Source: http://news.softpedia.com/news/Yahoo-Microsoft-and-Orange-Domains-Affected-by-Same-Remote-Code-Injection-Flaw-442776.shtml

Note: This news synopsis is taken from the DHS Daily Open Source Infrastructure Report, a daily [Monday through Friday, except US Federal holidays] summary of open-source published information concerning significant critical infrastructure issues; a 10-day archive of the DOSIR can be found at: http://www.dhs.gov/dhs-daily-open-source-infrastructure-report.


Last Updated: 27 May 2016 10:20:17