Follow us on Twitter
Follow us on FacebookPwC tries to silence security research firm
@ 2016/12/15Security firm should not have had the buggy software
A security research outfit has released details of a "critical" flaw in a security tool made by auditing and tax giant PwC.
Munich-based ESNC published a security advisory last week detailing how a remotely exploitable bug in a security tool, developed by auditing and tax giant PwC, could allow an attacker to gain unauthorised access to an affected SAP system.
It was all fairly bog standard. The researchers contacted and met with PwC in August to discuss the scope of the flaw. As part of its responsible disclosure policy, the researchers gave PwC three months to fix the flaw before a public advisory would be published.
A security research outfit has released details of a "critical" flaw in a security tool made by auditing and tax giant PwC.
Munich-based ESNC published a security advisory last week detailing how a remotely exploitable bug in a security tool, developed by auditing and tax giant PwC, could allow an attacker to gain unauthorised access to an affected SAP system.
It was all fairly bog standard. The researchers contacted and met with PwC in August to discuss the scope of the flaw. As part of its responsible disclosure policy, the researchers gave PwC three months to fix the flaw before a public advisory would be published.
