Stefan Sperling is a user on You can follow them or interact with them if you have an account anywhere in the fediverse. If you don't, you can sign up here.

Wait what? JunOS ships php to network devices? Wasn't aware of that.

"2017-07 Security Bulletin: Junos OS: Integer signedness error in GD Graphics Library (CVE-2016-3074)"

* Disable well known services such as J-Web, XNM-SSL, that can utilize onboard PHP scripting
* Discontinue use of Netconf with PHP
* Discontinue use of PyEZ with PHP"

Stefan Sperling @stsp

@galaxis And they're only just a little tiny wee bit over a year late with patching CVE-2016-3074 (published in April 2016).

· Web · 0 · 1