About Privacy Policy Sitemap Share on Facebook Share on Twitter Share on Pinterest
Lost Password?

A password will be emailed to you. You will be able to change your password and other profile details once you have logged in.

SOLARWINDS VULNERABILITY DISCLOSED BY DIGITAL DEFENSE

security

Digital Defense, Inc. (DDI), a leading provider of managed cloud-based security assessments, disclosed a vulnerability within the ‘LoginServlet’ page of the SolarWinds Storage Manager Server. This mishap gives an attacker the ability to extract sensitive information from the back-end database using standard SQL injection exploitation techniques. Sounds pretty scary! To add on to what’s already concerning, an attacker may be able to leverage this mishap to compromise the database server host operating system. Once DDI received this news, they notified SolarWinds of this finding.

DDI’s Vulnerability Research Team (VRT), utilizing data provided by DDI’s cloud-based Frontline Solutions Platform (FSP), are analytical experts when it comes to quickly identifying previously unknown vulnerabilities, commonly referred to as “Zero-Day” issues. Within recent months, DDI’s VRT has released multiple vulnerability disclosures, including those within widely used platforms such as the IBM WebSphere Application Server, the KnowledgeTree™ Online Document Management System and HP JetDirect Embedded Web Server.

“One of the key advantages of our cloud-based FSP platform is the wealth of information it provides to our researchers for data-mining and vulnerability analysis.  Using “big data” analytics, in conjunction with our responsible disclosure policy, allows us to effectively bolster security awareness within the DDI client community and beyond,” states Larry Hurtado, Digital Defense president and CEO.  “In addition, our ability to rapidly embed this ongoing vulnerability intelligence into the FSP allows clients and DDI security analysts alike to rapidly identify and address issues on vulnerable platforms.”

Want to stay updated regarding this issue? The DDI Labs Blog will be your source for more information as it becomes available.

Related posts:

  1. ReDigi, The World’s First Online Marketplace For USED Digital Music Set to Launch October 13th, 2011
  2. My Cloud Girlfriend Thinks I’m Hot
  3. Starbucks Digital Network
  4. Kindle Fire a Threat to iPad?
  5. Lowe’s Enters Smart Home Market

Like this? Share it.

Share this story on Pinterest

Posted By

Hey Everyone, I’m Kamerin Chambers. I am currently a DePaul Student majoring in Public Relations and Advertising. I have over 10 years of writing experience which includes work as a columnist, previous editor at GirlSpeak webzine, play-writer, and creative writer. I previously interned at Terry Hines & Associates as their Digital Marketing/Social Media intern which sprang my passion for Digital Marketing through Social Media and copy writing. I am a member of PRSSA (Public Relations Student Society of America) at DePaul and outside of academics, I love to enjoy life to the fullest.

Facebook comments:

0 Comments

Leave a Reply

Your email address will not be published.

t