CVE-2016-10593

Issue : ibapi (NodeJS addon) downloads binary resources over HTTP, enabling MITM-based code execution. Root cause : unencrypted binary fetch allows an attacker on the network path to swap binaries. Impact : remote code execution in affected environments prior to version 2.5.6 (as stated in CVE-20...