Critical Remote Code Execution Flaw Found in Open Source rConfig Utility


The network configuration management utility has two unpatched critical remote code execution vulnerabilities.

Two bugs in the network configuration utility rConfig have been identified, both allowing remote code execution on affected systems. Worse, one is rated critical and allows for a user to attack a system remotely – sans authentication.

Read more…