Educause Security Discussion mailing list archives

Previous By Date Next
Previous By Thread Next

Full Disclosure

From: Justin Sherenco <jsherenco () EMICH EDU>
Date: Thu, 22 Jul 2010 09:19:23 -0400
Hello All,
I recently came across this post on the fulldiclosure list at seclists.org
(http://seclists.org/fulldisclosure/2010/Jul/258).  It appears a security
research company found some SQL injections vulnerabilities on University
portals/websites.  From the content of the post it doesn't look like they
are targeting Universities specifically however wanted to share.  Also
they did inform the Universities of the issue before posting this to the
list although it doesn't look like they gave much time to fix the issue.  

Regards,
Justin   
Full Disclosure
-------------------------------------
Justin Sherenco, CISSP
Easten Michigan University
Security Analyst
734-487-8574
http://it.emich.edu/security
Previous By Date Next
Previous By Thread Next

Current thread: