Vulnerability Lab researchers found a flaw in another popular application

Feb 9, 2012 08:52 GMT  ·  By

Researchers from the Vulnerability Lab identified a file including vulnerability in the Cyberoam Central Console Appliance Application, an ElitCore product utilized by organizations to coordinate the security management across distributed appliances.

The issue, estimated as a high security risk, allows an attacker to remotely exploit a system and compromise the database management system and the service, even with low privileged accounts and without user interaction.

The vendor was notified of the problem on February 1 and according to Benjamin Kunz M., the founder of Vulnerability Lab, Cyberoam confirmed the existence of the vulnerability, promising to patch it up in the next days.

The researchers also provided a proof-of-concept video to prove that the vulnerability really exists and that it can be exploited by an attacker.