|
|
|
|
|
|
by PatchMonkey
3132 days ago
|
|
|
http://www.cvedetails.com/vendor/9237/Sqlite.html Really? A running 3 years out-of-date sqlite install? Methinks some hackers smell chum in the water. XSS, remote code execution, priviledge escalation, directory traversal... and for most of these, we even have choices on how to attack! Plenty of overflow attacks involved here. Where are the idiot script kiddies when you need them to demo how this ignorance hurts? And once in to your sql database, I wonder where else we can pivot... Remember how shellshock shook the world, because the software bedrock was actually insecure? Yeah... your old, "stable" stuff has had holes the entire time. Stay current. If your OS makes that a challenge, ditch it for a better one. |
|
|