Fortinet fixes bug letting unauthenticated hackers run code as root

It’s one of the mildly ironic features of security products. They tend to sit in the most secure parts of the network and have access to just about everything. Allowing an attacker to use your security appliance as a jumping off point is a BAD IDEA…:

Fortinet has released updates for its FortiManager and FortiAnalyzer network management solutions to fix a serious vulnerability that could be exploited to execute arbitrary code with the highest privileges. […]

Original Article