vb.org Archive - vBulletin 3.0.5 Released

Page 2 of 3

Show 40 post(s) from this thread on one page

vb.org Archive (https://vborg.vbsupport.ru/index.php)

- News and Announcements (https://vborg.vbsupport.ru/forumdisplay.php?f=2)

- - vBulletin 3.0.5 Released - Critical Update (https://vborg.vbsupport.ru/showthread.php?t=73934)

strongy

01-07-2005 11:17 AM

Quote:

Originally Posted by Paul M

So, the only difference between 3.0.4 and 3.0.5 is init.php ?

i don't think so theirs more too it than that, i think it just fixes the immediate problem :p

Erwin

01-07-2005 11:18 AM

The init.php update will plug the security hole.

Remember, the security hole is in ALL vBulletin 3 forums. It was always there. It just took someone all this time to discover how to exploit it, hence the need to close it now.

Paul M

01-07-2005 11:23 AM

Quote:

Originally Posted by strongy

i don't think so theirs more too it than that, i think it just fixes the immediate problem :p

Yeah, I just took a look - all minor errors (including at least two that look like they were introduced in 3.0.4 !).

Paul M

01-07-2005 11:24 AM

Quote:

Originally Posted by Erwin

The init.php update will plug the security hole.

Remember, the security hole is in ALL vBulletin 3 forums. It was always there.

Only if you run with register_globals ON, which is a bad idea in the first place. :)

Erwin

01-07-2005 12:02 PM

Quote:

Originally Posted by Paul M

Only if you run with register_globals ON, which is a bad idea in the first place. :)

At least that's what they think. :) But the recommendations from the developers is to update init.php anyway.

Revan

01-07-2005 01:24 PM

Quote:

Originally Posted by Thread title

vBulletin 3.0.5 Released

One thing to say:
Bugger.

:p
No, seriously. I am one of these nerds that are desperate to update their vBulletin IMMEDIATELY, no matter how many hacks I have installed (which is 68 BTW).
Even though I have learned in the past that Jelsoft just loves to torture people like me, I still updated to 3.0.4.

Bwaha nah just kidding, I think it's great that they are so quick with patching
...but don't think for a second I'm gonna update any other file than what they list as changed...
XD

//peace

red_baron2000

01-07-2005 05:40 PM

will wait for vbb 4.0 !!! maybe it is out tomorrow!! :)

Guest190829

01-07-2005 07:17 PM

I'm glad they found the loop hole...no complaints from me. = )

HiDeo

01-07-2005 07:52 PM

Thanks for the information

moethelawn

01-07-2005 09:29 PM

Shoot... I just rehacked my board.... oh well...

Better to be secure and rehack everything than to be lazy and have someone take control of my board....

All times are GMT. The time now is 07:53 AM.

Page 2 of 3

Show 40 post(s) from this thread on one page

X vBulletin 3.8.12 by vBS Debug Information
Page Generation 0.00982 seconds Memory Usage 1,732KB Queries Executed 10 (?)
More Information
Template Usage: (1)ad_footer_end (1)ad_footer_start (1)ad_header_end (1)ad_header_logo (1)ad_navbar_below (5)bbcode_quote_printable (1)footer (1)gobutton (1)header (1)headinclude (6)option (1)pagenav (1)pagenav_curpage (2)pagenav_pagelink (1)post_thanks_navbar_search (1)printthread (10)printthreadbit (1)spacer_close (1)spacer_open Phrase Groups Available: global postbit showthread	Included Files: ./printthread.php ./global.php ./includes/init.php ./includes/class_core.php ./includes/config.php ./includes/functions.php ./includes/class_hook.php ./includes/modsystem_functions.php ./includes/class_bbcode_alt.php ./includes/class_bbcode.php ./includes/functions_bigthree.php Hooks Called: init_startup init_startup_session_setup_start init_startup_session_setup_complete cache_permissions fetch_threadinfo_query fetch_threadinfo fetch_foruminfo style_fetch cache_templates global_start parse_templates global_setup_complete printthread_start pagenav_page pagenav_complete bbcode_fetch_tags bbcode_create bbcode_parse_start bbcode_parse_complete_precache bbcode_parse_complete printthread_post printthread_complete
Messages: