Bugtraq mailing list archives
Node Browserify RCE vuln (<= 4.2.0)
From: "Cal Leeming \[Simplicity Media Ltd\]" <cal.leeming () simplicitymedialtd co uk>
Date: Tue, 15 Jul 2014 16:20:44 +0100
Hello, Discovered an RCE vuln in Browserify <=4.2.0. Maintainer patched upstream just 4 hours after responsible disclosure yesterday, now fixed as of 4.2.1. Summary and POC found here: http://iops.io/blog/browserify-rce-vulnerability/ Cal
Current thread:
- Node Browserify RCE vuln (<= 4.2.0) Cal Leeming [Simplicity Media Ltd] (Jul 15)