As such, the firm declined to disclose anything specific about either the vulnerability or the patch, until everything is said and done.
The client side vulnerability discovered over the weekend allows for an attack that is "unique and highly sophisticated". To expand on the issue, LastPass also put up a post today, in which they made it clear that a fix is being worked on. Update Ma(5:00pm): Our team is currently investigating a new report by Tavis Ormandy and will update our community when we have more details. In response to this, the password manager-maker amended its original article detailing March 20's vulnerability by stating: Ah-ha, I had an epiphany in the shower this morning and realized how to get codeexec in LastPass 4.1.43.
0 kommentar(er)
