Kauft das PHP-Sicherheitsbuch!Links Tag cloud@christopherkunz
|
Entries tagged as virus
php #php.de administration advisory apache aps book review buch bugfix cacti certificate cgi cms compatibility compiling conference cryptography CVE-2012-1823 CVE-2012-2311 CVE-2012-2329 debian distribution encoding encryption exploit extension ez filter flickr google hannover heise hosting hotfix information disclosure irc ix Kryptografie linux linuxhotel mod_security norway notebook open source pear php-sicherheit PHPKIT phpsysinfo release announcement remote code execution remote command execution scalability schulung security seminar sicherheit software as a service spam spdy sql injection ssl suhosin system administration typo3 university Vikinger vortrag vulnerability web application webapplikationen white labelling whois worm XMLRPC xss cebit Chain of trust FUD Grid marketing reenactment tls Typo3 vikinger zertifikate PEAR
Sunday, November 6. 2005PEAR::XML_RPC worm in the wild
As the F-Secure blog reports, there is an exploit for the older PEAR::XML_RPC vulnerability (as reported by the GulfTech Security, the Hardened-PHP Project et al.) in the wild, and it seems to be a worm. Although this does not really come as a surprise, the surprising fact is that the F-Secure guys state not to have received many reports yet. The ISC has some more facts: it seems that the worm is targetting the following paths:
I’d bet with that attack vector, there is still a five-figure number of vulnerable servers out there... Funny though, that the old hole is targetted, and not the new one. Anyway, off to the conference now. See y’all soon. |
