批踢踢實業坊
›
看板
Bugtraq
關於我們
聯絡資訊
返回看板
發信人
cal.leeming@simplicitymedialtd.co.uk ("Cal Leeming \[Simplic,
看板
Bugtraq
標 題
Node Browserify RCE vuln (<= 4.2.0)
發信站
NCTU CS FreeBSD Server (Wed Jul 16 00:20:44 2014)
轉信站
ptt!csnews.cs.nctu!news.cednctu!FreeBSD.cs.nctu!.POSTED!securityfocus.
Hello, Discovered an RCE vuln in Browserify <=4.2.0. Maintainer patched upstream just 4 hours after responsible disclosure yesterday, now fixed as of 4.2.1. Summary and POC found here:
http://iops.io/blog/browserify-rce-vulnerability/
Cal