Posted by ethical-hacker
| Thursday June 29th, 2017 | News
Just 5 months ago we inform one of the leading accounting software company in Bulgaria (warehouse software, gas station software, etc.), about a critical vulnerability in the administration software they offer. They wasn’t happy with our call at all. The vulnerability allows remote code execution, publicly known since 2014, and isn’t patched yet. In our case, a CryptoLocker had locked accounting information for the past few months. Today we check software company website and the decision they took is very simple – to hide that they use this software. This is not a micro pass. Remote code execution is a serious problem, and burying the head in the sand not working.