Masu binciken tsaro daga Armis
Matsaloli shida na iya haifar da kisa lambar mai hari lokacin aiki ba daidai ba saitin IP ko zaɓuɓɓukan TCP a cikin fakiti, da kuma lokacin tantance fakitin DHCP. Matsaloli biyar ba su da haɗari kuma suna iya haifar da zubar da bayanai ko harin DoS. An daidaita bayyana rashin lafiyar tare da kogin Wind, kuma sabon sakin VxWorks 7 SR0620, wanda aka saki a makon da ya gabata, ya riga ya magance matsalolin.
Tun da kowane lahani yana rinjayar wani ɓangare na daban-daban na tarin hanyar sadarwar, batutuwan na iya zama takamaiman-saki, amma an bayyana cewa kowane nau'in VxWorks tun daga 6.5 yana da aƙalla raunin aiwatar da lambar nesa ɗaya. A wannan yanayin, ga kowane bambance-bambancen na VxWorks ya zama dole don ƙirƙirar amfani daban. A cewar Armis, matsalar ta shafi na’urori kusan miliyan 200, da suka hada da na’urorin masana’antu da na likitanci, da na’urori masu amfani da wayar salula, da wayoyin VOIP, da na’urorin kashe wuta, da na’urorin buga takardu da na’urorin Intanet daban-daban.
Kamfanin Wind River
Wakilan Armis sun yi imanin cewa saboda wahalar sabunta na'urori masu rauni, yana yiwuwa tsutsotsi za su bayyana waɗanda ke cutar da cibiyoyin sadarwa na cikin gida kuma suna kai hari ga shahararrun nau'ikan na'urori masu rauni gaba ɗaya. Misali, wasu na'urori, kamar kayan aikin likitanci da masana'antu, suna buƙatar sake tabbatarwa da gwaji mai yawa lokacin sabunta firmware ɗin su, yana mai da wahala sabunta firmware ɗin su.
Wind River
source: budenet.ru