A swarm of buffer overflow and denial-of-service bugs makes versions 5.5, 5.6, and 5.7 of e-terrahabitat susceptible to tampering, the US Computer Emergency Readiness Team warns here. Customers using earlier versions need to upgrade as well.
“An unauthenticated attacker may be able to gain access with the
privileges of the e-terrahabitat account or an administrator account and execute arbitrary commands, or cause a vulnerable system to crash,” CERT’s advisory states. Users should apply the patch immediately, it adds.