A directory traversal bug has been found in a Miele dishwasher. This allows access to arbitrary files on the dishwasher's Web server from unauthenticated users. It has been questioned whether appliance makers should be the ones connecting things to networks, since their lack of experience means there isn't even an official channel to report or fix security bugs. Miele are yet to comment.
(Score: 5, Informative) by lgsoynews on Wednesday March 29 2017, @11:47AM (5 children)
Some of the original reports were wrong, it's not a household dishwasher: it's a Disinfector Washer, something that is used in hospitals.
Which makes the bug even worse: you don't want another easy hacking target in your hospital.
And the justification for the embedded webserver is BS in my opinion...
(Score: 2) by donkeyhotay on Wednesday March 29 2017, @02:18PM (4 children)
Thanks for clarifying that, because I was about to go off on the absurdity of having a web-enabled dishwasher.
(Score: 0) by Anonymous Coward on Wednesday March 29 2017, @04:29PM (3 children)
I assume you were going to type it using the microwave, right?
---
sent from my vacuum cleaner
(Score: 3, Informative) by bob_super on Wednesday March 29 2017, @05:08PM (2 children)
Gotta type on the toaster these days, because the microwave is being upgraded to a 4K camera.
(Score: 0) by Anonymous Coward on Wednesday March 29 2017, @06:19PM (1 child)
I thought the bow-tie was really a camera, not the microwave.
(Score: 2) by bob_super on Wednesday March 29 2017, @06:56PM
In case you actually missed it:
http://www.latimes.com/politics/washington/la-na-essential-washington-updates-more-than-just-spying-microwaves-why-1489416182-htmlstory.html [latimes.com]