Shulou(Shulou.com)11/24 Report--

CTOnews.com July 22, the network security company Palo Alto Networks recently released a blog post, found the malicious software written in the Rust language-the P2PInfect worm.

CTOnews.com Note: Rust is a general, compiled programming language developed by Mozilla. The design principle is "safe, concurrent, practical" and supports functional, concurrent, procedural and object-oriented programming styles.

The consensus in the Rust industry is "security". Microsoft is currently recompiling the Win11 kernel based on this language to further improve the security of the Win11 system.

Palo Alto Networks researchers have discovered the peer-to-peer worm P2PInfect based on Rust, which exploits Lua Sandbox Escape vulnerabilities and targets Redis, an open source database application that is widely used in cloud environments, and can execute arbitrary code remotely.

The tracking number of the Lua Sandbox Escape vulnerability is CVE-2022-0543, and the Critical CVSS rating in the NIST national vulnerability database is 10.0 (with a maximum score of 10), indicating its harm.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.