Home / os / winmobile

Streamworks Job Scheduler Release 7 Authentication Weakness

Posted on 16 January 2019

Streamworks Job Scheduler Release 7 has all agents using the same X.509 certificates and keys issued by the vendor for authentication. The processing server component does not check received messages properly for authenticity. Agents installed on servers do not check received messages properly for authenticity. Agents and processing servers are vulnerable to the TLS Heartbleed attack.

 

TOP

Malware :

Exploits :