Snitz Forums 2000
Snitz Forums 2000
Home | Profile | Register | Active Topics | Members | Search | FAQ
Username:
 Password:
Save Password
Forgot your Password?

 All Forums
 Community Forums
 Community Discussions (All other subjects)
 NeverEverNoSanity WebWorm defaces phpBB fora!		  New Topic  Topic Locked
 Printer Friendly
Author Previous Topic Topic Next Topic  

MarcelG
Retired Support Moderator

Netherlands
2625 Posts
Posted - 22 December 2004 :  07:27:57  Show Profile  Visit MarcelG's Homepage
quote:
Source: http://www.viruslist.com/en/alerts?alertid=156678925
Net-Worm.Perl.Santy.a
12.21.04 17:33, GMT +0300, Moscow | comment
Status : severe risk
Kaspersky Lab has detected a new worm which propagates using a vulnerability in phpBB, which is used to create Internet forums. The vulnerability is present in phpBB versions up to 2.0.11.

The worm overwrites all .asp, .php, .htm and .shtm files on infected websites with its own code.

Further information will be available in the Virus Encyclopaedia in the near future.

All users of phpBB are recommended to update to version 2.0.11

This new worm does not represent any threat to users visiting infected sites as it will not infect computers being used to view infected sites.

An urgent update to Kaspersky Anti-Virus databases has already been issued.

Woooow....automatically defacing phpBB sites....
Let's hope they don't create a Snitz-variant of this worm...
portfolio - linkshrinker - oxle - twitter

PeeWee.Inc
Senior Member

United Kingdom
1893 Posts
Posted - 22 December 2004 :  07:51:23  Show Profile  Visit PeeWee.Inc's Homepage
It's a nasty, nasty little critter
De Priofundus Calmo Ad Te Damine
Go to Top of Page

HuwR
Forum Admin

United Kingdom
20584 Posts
Posted - 22 December 2004 :  10:19:32  Show Profile  Visit HuwR's Homepage
it automatically defaces any website on the same server too, so just because you have a snitz forum doesn't matter, if someone on the same server has a phpbb then you are just as likely to get your site hacked.
Go to Top of Page

taropatch
Average Member

USA
741 Posts
Posted - 22 December 2004 :  12:15:03  Show Profile
quote:
Originally posted by HuwR

it automatically defaces any website on the same server too, so just because you have a snitz forum doesn't matter, if someone on the same server has a phpbb then you are just as likely to get your site hacked.
I speak from experience. This is no fun.
Go to Top of Page

MarcelG
Retired Support Moderator

Netherlands
2625 Posts
Posted - 22 December 2004 :  12:34:25  Show Profile  Visit MarcelG's Homepage
on the same *server* ??? d*mn....[:xx]
portfolio - linkshrinker - oxle - twitter
Go to Top of Page

taropatch
Average Member

USA
741 Posts
Posted - 22 December 2004 :  16:34:42  Show Profile
quote:
Originally posted by marcelgoertz

on the same *server* ??? d*mn....[:xx]
Yes, totally out of my control. Here's what I was posting yesterday... Server hacked
Go to Top of Page

-gary
Development Team Member

406 Posts
Posted - 27 December 2004 :  12:12:08  Show Profile
And the lesson for today is that you should never allow processes write permission to your site files and run processes like PHP under their own login, NOT the admin account.
KawiForums.com
Go to Top of Page
  Previous Topic Topic Next Topic  
 New Topic  Topic Locked
 Printer Friendly
Jump To:
Snitz Forums 2000 © 2000-2021 Snitz™ Communications Go To Top Of Page
This page was generated in 0.31 seconds. Powered By: Snitz Forums 2000 Version 3.4.07