Java and Python Contain Security Flaws That Allow Attackers to Bypass Firewalls

Java and Python contain similar security flaws that allow an attacker to bypass firewalls by injecting malicious commands inside FTP URLs. Both issues remain unpatched. The FTP protocol injection issue was first detailed by Russian security lab ONsec in 2014, but never got the public attention it needed. At the heart of the issue resides an older issue in the FTP protocol itself, which is classic mode FTP. The attack relies on convincing users to access a malicious Java or Python applications installed on a server.

Source: https://www.bleepingcomputer.com/news/security/java-and-python-contain-security-flaws-that-allow-attackers-to-bypass-firewalls/

Something Fresh

What to Know About The Jamaica Data Protection Act

St Vincent and the Grenadines embracing CariSECURE

Jamaica's Gov’t Looking to Finalize Data Protection Act Regulations

What People Reading

Feedback and data-driven updates to Googles disclosure policy

Mozilla Says Google's New Ad Tech - FLoC - Doesn't Protect User Privacy

Launching AnonLeaks, Ready To Dump More HBGary E-mails!

Selling technology to cops, part 2

RSA: Geolocation shows just how dead privacy is

Categories

Partners

Just add here your partners image or promo text