• 9964432222
  • Mail Us
  • Appointment
  • Locate Us
  • Chat Now
  • Courses
  • Login
  • Register
Manifest IAS
JournalsOfIndia
Manifest Learning Academy
  • Home
  • SNIPPETSfor Prelims
  • ARTICLESfor Mains
  • BROWSEBY SOURCE
  • DOWNLOADS
No Result
View All Result
  • Home
  • SNIPPETSfor Prelims
  • ARTICLESfor Mains
  • BROWSEBY SOURCE
  • DOWNLOADS
No Result
View All Result
JournalsOfIndia
No Result
View All Result
Home Science & Tech

Log4 Shell

December 15, 2021
in Science & Tech
Reading Time: 2 mins read
0
Log4 Shell
312
VIEWS
Share on WhatsAppShare on TelegramShare on Facebook
image_pdfMake PDF
In news– Recently, the Log4j vulnerability also known as Log4 Shell has been reported and affected a wide range of products including Amazon, Twitter and Apple’s iCloud.

About Log4 Shell-

  • This software flaw as reported by cybersecurity researchers could allow attackers to have uncontrolled access to computer systems.
  • It was first highlighted by researchers at LunaSec. 
  • The issue was discovered in Microsoft-owned Minecraft, though LunaSec warns that “many, many services” are vulnerable to this exploit due to Log4j’s “ubiquitous” presence. 
  • It can allow an attacker to control and execute ‘arbitrary code’ and gain access to a computer system. 
  • It can allow a hacker to gain complete control of a server when exploited correctly.
  • The Log4j library in Java is used to keep a record of all activity in an application and is thus very commonly used by software developers across the world.
  • It  supports by default a logging feature called “Message Lookup Substitution”. 
  • This feature enables certain special strings to be replaced, at the time of logging, by other dynamically-generated strings.
  • It is dubbed as CVE-2021-44228 which is the official name given to each software vulnerability as it is discovered.
  • The technical definition in the CVE library states that “An attacker who can control log messages or log message parameters can execute arbitrary code loaded from LDAP servers when message lookup substitution is enabled.” 
  • The worrisome part here is that the exploit has likely been used by hackers to gain access to certain computer systems, and now that the exploit is in the open, companies will have to patch it soon.

 

image_pdfMake PDF
Tags: News PaperPrelims

Related Posts

Union Budget’s ‘Digital India’ push

Union Budget’s ‘Digital India’ push

February 4, 2023
Additional Surveillance Mechanism (ASM)

Additional Surveillance Mechanism (ASM)

February 3, 2023
Researchers find a new way to improve the storage time of quantum information

Researchers find a new way to improve the storage time of quantum information

February 3, 2023
Macrosomia

Macrosomia

February 3, 2023
What are lab-grown diamonds?

What are lab-grown diamonds?

February 2, 2023
Radioactive capsule found in Australia

Radioactive capsule found in Australia

February 2, 2023
Genetically Engineered Trees

Genetically Engineered Trees

January 30, 2023
Visible Emission Line Coronograph(VELC) for India’s first solar mission

Visible Emission Line Coronograph(VELC) for India’s first solar mission

January 27, 2023
Padma awards in the field of Medicine

Padma awards in the field of Medicine

January 27, 2023
Idea Train Profile

Idea Train Profile

January 26, 2023
Please login to join discussion
JournalsOfIndia

Our vision is to orient the readers to grasp the facts objectively and analyse critically. In the rush of reaching first to the readers, the websites miss the balanced opinion, which is the need of the hour. We aim to reach the readers with more crispness, preciseness and relevance. We bring the articles in UPSC way for the civil services aspirants and the Wisest Way for general readers.

Categories

  • Agriculture
  • Disaster Management
  • Economy
  • Environment
  • Ethics
  • Foreign Affairs
  • Geography
  • Governance
  • History
  • Law & Policy
  • Opinion
  • People in News
  • Places in News
  • Science & Tech
  • Security
  • Society
  • Sports
  • Uncategorized

Browse by Tag

AIR All India Radio BBC Business Line Business Standard dow Down to Earth DownToEarth DTE Economic Times ET FAO Financial Express GS-1 GS-2 GS-3 GS-4 Hindustan Times IE India & the world Indian express Indiatoday India today Kurukshetra Livelihoods portal LiveMint Mains News News Paper Newspaper PIB Prelims PRS India RSTV Science Reporter Survey The Hindu The India Express The Indian Express The Print the wire Times of India TOI TOPPERS Yojana

Newsletter

The most important UPSC news and events of the day.

Get Journals daily newsletter on your inbox.

© 2020 JournalsOfIndia - A free initiative by Manifest Team.

  • Login
  • Sign Up
  • Home
  • SNIPPETS
  • ARTICLES
  • BROWSE
  • DOWNLOADS
No Result
View All Result

© 2020 JournalsOfIndia - A free initiative by Manifest Team.

Welcome Back!

Login to your account below

Forgotten Password? Sign Up

Create New Account!

Fill the forms bellow to register

All fields are required. Log In

Retrieve your password

Please enter your username or email address to reset your password.

Log In