Fortinet, Palo, Checkpoint, Cisco, Sonicwall … is there any big firewall vendor that didn’t have any critical vulnerabilities last year?
Fortinet, Palo, Checkpoint, Cisco, Sonicwall … is there any big firewall vendor that didn’t have any critical vulnerabilities last year?
And every service runs as root. This enables the CRL webserver to download /etc/shadow …
Or user sessions persist on the filesystem so a glitch on the captive portal’s web server allow you to get clear text username and password for currently connected vpn sessions …