Most security appliances are poorly maintained Linux systems with insecure Web applications installed on them, researcher says. Ben Williams, a penetration tester at NCC Group, presented his findings Thursday at the Black Hat Europe 2013 security conference in Amsterdam. He investigated products from some of the leading security vendors, including Symantec, Sophos, Trend Micro, Cisco, Barracuda, McAfee and Citrix. Many of these vulnerabilities were in the Web-based user interfaces of the products, he said.”]