COMPANY NEWSDecember 13th, 2010 - NTOSpider helps find issue with DrupalAs seen in this post, NTOSpider continues to find vulnerabilities that other scanners are missing. http://george.hedfors.com/content/drupal-double-float-overflow "Last week, I was playing with NTOSpider, which came up with an interesting result. At the time, I hadn't heard about the type of issue, which was described as a "Double-float overflow". The type of problem is related to handling of really big numbers, 10^308 which was malhandled by Drupal. After a very quick response by Drupal's Security Team, it was concluded that this is not a security problem, but is a problem and should have been fixed years ago prior to Drupal 6. I have to give most of the credit to NTOSpider as no other web
application security scanners has yet been able to identify the same
bug." We are certainly glad to be of help to the Open Source Community in any way we can, and look forward to doing more in the months to come. |
Sales