Stories
Slash Boxes
Comments

SoylentNews is people

posted by on Wednesday March 29 2017, @11:28AM   Printer-friendly
from the let's-make-the-Internet-squeaky-clean dept.

A directory traversal bug has been found in a Miele dishwasher. This allows access to arbitrary files on the dishwasher's Web server from unauthenticated users. It has been questioned whether appliance makers should be the ones connecting things to networks, since their lack of experience means there isn't even an official channel to report or fix security bugs. Miele are yet to comment.


Original Submission

 
This discussion has been archived. No new comments can be posted.
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
  • (Score: 5, Informative) by lgsoynews on Wednesday March 29 2017, @11:47AM (5 children)

    by lgsoynews (1235) on Wednesday March 29 2017, @11:47AM (#485822)

    Some of the original reports were wrong, it's not a household dishwasher: it's a Disinfector Washer, something that is used in hospitals.

    Which makes the bug even worse: you don't want another easy hacking target in your hospital.

    And the justification for the embedded webserver is BS in my opinion...

    Starting Score:    1  point
    Moderation   +4  
       Informative=4, Total=4
    Extra 'Informative' Modifier   0  
    Karma-Bonus Modifier   +1  

    Total Score:   5  
  • (Score: 2) by donkeyhotay on Wednesday March 29 2017, @02:18PM (4 children)

    by donkeyhotay (2540) on Wednesday March 29 2017, @02:18PM (#485900)

    Thanks for clarifying that, because I was about to go off on the absurdity of having a web-enabled dishwasher.