BugTraq
Node Browserify RCE vuln (<= 4.2.0) Jul 15 2014 03:20PM
Cal Leeming \[Simplicity Media Ltd\] (cal leeming simplicitymedialtd co uk)
Hello,

Discovered an RCE vuln in Browserify <=4.2.0.

Maintainer patched upstream just 4 hours after responsible disclosure
yesterday, now fixed as of 4.2.1.

Summary and POC found here:
http://iops.io/blog/browserify-rce-vulnerability/

Cal

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus