Drew
Banned
Registered: 24th Nov 01
Location: County Durham
User status: Offline
|
just got this off my hosts.........
Firstly, Merry xmas.
Secondly, a recent exploit in phpBB has been found where a worm has been created. if you use phpBB, please ensure it is upgraded to the latest stable release from www.phpbb.com
This is an urgent requirement, to stop this exploit from spreading and deteriating service on the servers. Failure to comply with this request may mean that we will need to suspend your site to ensure the worm doesnt affect us, or spread further.
We appreciate your assistance in this serious matter. Those of you that installed your phpBB via fantastico can use the one click upgrade button.
Regards
Admin
|
Ian
Site Administrator
Registered: 28th Aug 99
Location: Liverpool
User status: Offline
|
We don't, do you have any details on the exploit just so I can check it doesn't affect this base code as well?
|
Drew
Banned
Registered: 24th Nov 01
Location: County Durham
User status: Offline
|
this is all that was sent to me, but i will email back asjing your question
|
willay
Moderator
Organiser: South East, National Events
Premium Member
Registered: 10th Nov 02
Location: Roydon, Essex
User status: Offline
|
Ian.
Bugtraq posting: http://www.securityfocus.org/archive/1/385063/2004-12-16/2004-12-22/0
PHPBB users forum explains the exploit: http://www.phpbb.com/phpBB/viewtopic.php?f=14&t=240513
|
Joff
Member
Registered: 17th Oct 00
Location: Cambridgeshire
User status: Offline
|
Damn, if CS had a decent search facility with keyword highlighting... 
|
Ian
Site Administrator
Registered: 28th Aug 99
Location: Liverpool
User status: Offline
|
Then it wouldn't be written like that.
|
Joff
Member
Registered: 17th Oct 00
Location: Cambridgeshire
User status: Offline
|
I second that.
|
