LOG4J security issue

LOG4J security issue SearchSearch
NowSMS Support Forums ⬆
NowSMS Support - MMS & Advanced Issues ⬆
   
Author Message
marc bazimon
Frequent Contributor
Username: Marc_orange

Post Number: 103
Registered: 01-2007
Posted on Thursday, December 16, 2021 - 02:35 pm:   
Hi Nowsms team

there's a big breach for the server exposed to internet using log4j.
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44228
https://logging.apache.org/log4j/2.x/security.html

i did couple of check regarding the windows version , that is suppoosed to be clear.

Could you confirm that the MMSC windows doesn't use log4J ?
is your Linux version use it and if yes is the mmsc vulnerable for this attack?

thanks beforehand for your quick feedback ,

Br
Marc
Des - NowSMS Support
Board Administrator
Username: Desosms

Post Number: 6320
Registered: 08-2008
Posted on Thursday, December 16, 2021 - 02:54 pm:   
Hi Marc,

NowSMS does not use log4j in either Windows or Linux, so it is not affected by this vulnerability.

Regards,

Des
NowSMS Support
marc bazimon
Frequent Contributor
Username: Marc_orange

Post Number: 104
Registered: 01-2007
Posted on Friday, December 17, 2021 - 10:54 am:   
Hi Des ,
Thanks for the clarification
have a nice end of year fest
br
Marc

Add Your Message Here, or click here to start a new topic.
Post:
Bold text Italics Underline Create a hyperlink Insert a clipart image
Options: Automatically activate URLs in message
Action:
Search Search Search Last 30 Days Login / Register Logout

NowSMS Technical Bulletins
Read more