Date: Thu, 30 Dec 2004 02:14:30 -0700 From: Ed Stover <estover@nativenerds.com> To: freebsd-security@freebsd.org Subject: Re: Found security expliot in port phpBB 2.0.8 FreeBSD4.10 Message-ID: <1104398070.633.1.camel@red.nativenerds.com> In-Reply-To: <34657.24.230.37.14.1104187002.squirrel@24.230.37.14> References: <34657.24.230.37.14.1104187002.squirrel@24.230.37.14>
next in thread | previous in thread | raw e-mail | index | archive | help
Thanks for all the input guys and gals. didn't meant to start a flame war ;) On Mon, 2004-12-27 at 15:36 -0700, estover@nativenerds.com wrote: > I think, there is a neat exploit in the phpbb2.0.8 because I found my > home > page defaced one dark morning. The patch for phpBB is here. > http://www.phpbb.com/downloads.php > > The excerpt of the log is attached. > > I believe the link to the described exploit is here. > http://secunia.com/advisories/13239 > > The defacement braggen page is here filter to show the exploited > FreeBSD > machines that aneurysm.inc has defaced > http://www.zone-h.org/en/defacements/filter/filter_defacer=aneurysm.inc/filter_system=FreeBSD/page=1/ >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1104398070.633.1.camel>