Morning Overview on MSN

An 18-year-old heap buffer overflow in NGINX gives attackers remote code execution — billions of devices run the affected module

A single rewrite rule, the kind pasted into NGINX configurations thousands of times a day, can hand an unauthenticated attacker full remote code execution on the underlying server. The vulnerability, ...
GIGAZINE

A remote code execution vulnerability has been discovered in NGINX; the affected versions are listed below.

Security firm DepthFirst has reportedly detected multiple vulnerabilities in the source code of the web server software 'NGINX' after feeding it into their analysis system, including four memory ...
Bleeping Computer

18-year-old NGINX vulnerability allows DoS, potential RCE

An 18-year-old flaw in the NGINX open-source web server, discovered using an autonomous scanning system, can be exploited for denial of service and, under certain conditions, remote code execution.
IT News For Australia Business

F5 patches 18-year-old AI-found 'Rift' vulnerability in NGINX web server

F5, the company supporting the world's most popular web server NGINX, has issued patches for a critical memory corruption bug causing a heap buffer overflow, that could potentially be abused for ...