Subscribe / Unsubscribe Enewsletters | Login | Register

Pencil Banner

Remote desktop tool distributed by Comodo enabled privilege escalation

Lucian Constantin | Feb. 22, 2016
The GeekBuddy VNC server was protected with a weak password, allowing unprivileged users to gain full system access.

Comodo's first attempt to fix the same-origin policy issue was unsuccessful, its patch being trivial to bypass, according to Ormandy. The company eventually deployed a complete fix.

Over the past year, Ormandy has found critical vulnerabilities in many endpoint security products, raising questions about whether security vendors are doing enough to detect and prevent such errors in their development process.

 

Previous Page  1  2 

Sign up for CIO Asia eNewsletters.