ACTi and Twonky™ Directory Traversal Vulnerabilities Disclosed by Digital Defense

Share Article

Digital Defense Vulnerability Research Capabilities Lead to Zero-Day Disclosures

Digital Defense, Inc. (DDI), an industry leader of managed, cloud-based security assessments and advanced vulnerability management solutions, discloses directory traversal vulnerabilities in two different products, the ACTi Web Configurator 3.0 and the PacketVideo TwonkyServer and TwonkyMedia software. The previously unknown flaws – zero-day vulnerabilities – can allow unauthenticated remote attackers to gain access to restricted files which may contain passwords or other private information, compromising an organization’s security. DDI immediately notified both companies about the vulnerabilities, which have been addressed by the organizations. Further detail can be found on the DDI Labs Blog.

Larry Hurtado, DDI President and CEO, states, “Automatic Zero-Day Vulnerability detection is a key DDI core competency. Our patent-pending scanning technology, NIRV, coupled with our research team expertise, has resulted in the frequent discovery of previously unknown vulnerabilities. DDI’s Vulnerability Research Team (VRT), utilizing data provided through our Frontline™ Solutions Platform (FSP), provides the knowledge necessary to quickly identify zero-day vulnerabilities. We don’t stumble upon these threats, we seek them out.”

Hurtado adds, “This Collective Security Intelligence demonstrates our unique offering. The utilization of Big Data analysis further bolsters the security of our clients as we can rapidly identify potential threats and alert the DDI community, ensuring proactive measures can be employed quickly to prevent a security breach. Our managed service offers clients increased operational efficiencies and a high ROI.”

DDI has disclosed multiple disclosures in recent months including:

  •     SOLARWINDS® Storage Manager Server “LoginServlet”
  •     HP JetDirect Embedded Web Server
  •     KnowledgeTree™ Online Document Management System
  •     IBM® WebSphere® Application Server

About Digital Defense
Digital Defense, Inc. is a leading provider of managed, cloud-based security assessments, providing clients high value solutions through best-in-class service. DDI’s proprietary online vulnerability management system, Frontline Solutions Platform, combined with certified Security Analysts, delivers one of the most powerful and comprehensive assessment results and remediation management offerings in the marketplace.

Reader Contact Information
Digital Defense, Inc., 9000 Tesoro Drive, Suite 100, San Antonio, Texas, 78217
Phone - 210.822.2645, Fax - 210.822.9216
http://www.ddifrontline.com

Digital Defense and the Shield Logo are Registered Service Marks of Digital Defense, Inc. All other trademarks are the property of their respective owners.

Share article on social media or email:

View article via:

Pdf Print

Contact Author

Meg Grant
Visit website