Software bugs

Citect was notified of a buffer overflow bug in their remote plant management systems in January 2008 and has only just released a fix, writes TechNewsWorld:

“The problem is a classic example of buffer overflow from the ’90s,” Core Security CTO Ivan Arce told TechNewsWorld. “It’s not a very sophisticated thing, [which] makes it surprising.”

…

The flaw was first found in January, but Core Security says it was not corrected until just a few days ago.

“This could have been done better — especially on such a critical software,” Arce told TechNewsWorld. “It’s not somebody’s FTP server. It’s software that is critical and should be addressed in a more timely manner.”

Popularity: 39% [?]

This entry was posted on Thursday, June 12th, 2008 at 2:17 am and is filed under Bug consequences.