I take it Sophos UTMs are exposed to this vulnerability and Sophos is releasing a Patch for all models affected soon?
This thread was automatically locked due to age.
I take it Sophos UTMs are exposed to this vulnerability and Sophos is releasing a Patch for all models affected soon?
is correct in his statement. Thanks!
Sophos UTM is affected by the DirtyCow CVE-2016-5195. However it requires you to have successful shell login to exploit. Once logged in, there's nothing left to exploit. We recommend to always use a strong password and minimize shell access to just the networks you trust. Sophos will be patching it in a future update.
is correct in his statement. Thanks!
Sophos UTM is affected by the DirtyCow CVE-2016-5195. However it requires you to have successful shell login to exploit. Once logged in, there's nothing left to exploit. We recommend to always use a strong password and minimize shell access to just the networks you trust. Sophos will be patching it in a future update.