A vulnerability in the LANDesk Management Gateway has been patched with a recent update.

"An error in the web interface of the LANDesk Management Gateway can be used by an attacker to create their own commands and pass them to the shell of the underlying system to be run with root privileges," according to The H Security.

"The software update GSBWEB_61 closes the hole," the article states. "According to Core Security, which discovered the problem, the flaw can only be exploited in conjunction with cross-site request forgery."

Click here to read the article at The H Security.