DNSS Inc – IT consulting and IT security services for small to mid-size businesses

Managed IT Services, IT Security Services, Vulnerability Management and Remediation, Help Desk Support, IT Maintenance Services, Network Administration, Business Continuity Planning, Disaster Recovery Planning, Onsite and Offsite Data Backup, and Information Security Assessment

Fortinet SSH vulnerability more widespread than thought

Fortinet has found that an SSH vulnerability may be more widespread than once thought. The company insisted that the flaw should not be considered a backdoor, and experts tended to agree.The flaw allowed a Python exploit script — posted earlier this month to the Full Disclosure mailing list — to gain administrative access via SSH by taking advantage of hardcoded login credentials on devices using FortiOS versions 4.3.0 to 4.3.16 and 5.0.0 to 5.0.7. Fortinet initially said that systems updated with builds released after July 2014 were not affected. A new investigation by Fortinet’s Product Security Incident Response team found that the vulnerability affects more versions of FortiOS than previously believed, as well as versions of FortiSwitch, FortiAnalyzer and FortiCache.

Source: Fortinet SSH vulnerability more widespread than thought

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

Information

This entry was posted on January 27, 2016 by in Blog.
%d bloggers like this: