Magellan SQLite vulnerability

Started by Tom

Tom

Magellan SQLite vulnerability   20 December 2018, 16:32

Have NetWorx versions 5.x and 6.x been re-released to address Magellan SQLite bug (remote code execution vulnerability)?
SoftPerfect Support forum - Ann avatar image
Ann

Re: Magellan SQLite vulnerability   20 December 2018, 16:40

The latest build of NetWorx v6.2.3 comes with SQLite 3.26.0, which is not vulnerable, according to Tencent Team that discovered the issue.

Previous versions of NetWorx, including 5.x.x, are likely to contain a vulnerable version of SQLite, but it is not exploitable because NetWorx does not allow user SQL to be executed in any way, especially remotely.

Reply to this topic

Sometimes you can find a solution faster if you try the forum search, have a look at the knowledge base, or check the software user manual to see if your question has already been answered.

Our forum rules are simple:

  • Be polite.
  • Do not spam.
  • Write in English. If possible, check your spelling and grammar.

Author:

Email:

Subject

A brief and informative title for your message, approximately 4–8 words:

     

Spam prevention: please enter the following code in the input field below.

 ********   **      **  ********  **     **  **      ** 
 **     **  **  **  **  **         **   **   **  **  ** 
 **     **  **  **  **  **          ** **    **  **  ** 
 ********   **  **  **  ******       ***     **  **  ** 
 **     **  **  **  **  **          ** **    **  **  ** 
 **     **  **  **  **  **         **   **   **  **  ** 
 ********    ***  ***   ********  **     **   ***  ***  

Message: