News

UDx Security Vulnerability in 7.1.1

0

In case you missed it, a vulnerability in the 7.1.1 UDx could allow for remote execution to due improper sanitization of user-supplied data packets.

From Cisco Security:

The vulnerability is due to improper sanitization of user-supplied data packets by the affected software. An attacker could exploit this vulnerability by supplying crafted command packets to a targeted system. A successful exploit could allow an attacker to execute arbitrary commands under the context of dbadmin.

The resolution is to upgrade to 7.1.2 or 7.2. Read more in the security bulletin.

About the author / 

Norbert Krupa

Norbert is the founder of vertica.tips and a Solutions Engineer at Talend. He is an HP Accredited Solutions Expert for Vertica Big Data Solutions. He has written the Vertica Diagnostic Queries which aim to cover monitoring, diagnostics and performance tuning. The views, opinions, and thoughts expressed here do not represent those of the user’s employer.

Leave a Reply

Upcoming Events

  • No upcoming events
AEC v1.0.4

Subscribe to Blog via Email

Enter your email address to subscribe and receive notifications of new posts by email.

Read more use cases here.

Notice

This site is not affiliated, endorsed or associated with HPE Vertica. This site makes no claims on ownership of trademark rights. The author contributions on this site are licensed under CC BY-SA 3.0 with attribution required.
%d bloggers like this: