The Arcive of Official vBulletin Modifications Site.It is not a VB3 engine, just a parsed copy! |
|
#51
|
||||
|
||||
Ok so they can hack the plugin to find a whole and get into the SQL or so....yes??
I was checking Valter's plugin and now it's quarantine, what happened now with it???? Should we disable it or is there a way that Valter will fix it ?!?!? Can't post in the thread for news Cheers |
#52
|
||||
|
||||
Yes essentially thats what I understood reading the posts.
It was quarantined yesterday because someone seems to have found another exploit (a few pages back on this thread I think) even with the latest update. I'd suggest disabling it in the least if you have a large/well known board. I just copied over my rules and uninstalled it completely for now. That dumps the SQL tables as well as I didn't want to risk it. He will fix it no doubt. The first time around the fix came within a few hours. But there doesn't seem to be any Valter activity yet. He could just be busy elsewhere. Yeah once its quarantined it gets locked. I ended up here for the same reason. |
#53
|
||||
|
||||
[S]I'm not convinced Advanced Forum Rules is the attack vector for the latest round. Sites that have never used it have reportedly been attacked.[/S]
Retracted. I found a hole in the cookie handling code due to the use of the PHP eval function. I.e. the hacker pre-sets a cookie to contain malicious code, and the eval function runs it when it picks up the cookie content (that it was expecting to be something else). Kym |
#54
|
|||
|
|||
Quote:
Quote:
As for the "uninstall all mods" person, if you want your server to be safe from hacking unplug it from the internet (and keep it in a locked room). |
#55
|
||||
|
||||
Not a single site i have done repair work on was missing the specific mod in question. Not a single site i repaired had no modifications.
|
#56
|
|||
|
|||
Well, fair enough - that's a pretty strong argument.
|
#57
|
||||
|
||||
Quote:
And with the user table info on the 3rd page I even know how they got in there interesting. It feels like solving a murder case ^^ |
#58
|
||||
|
||||
Gut gemacht Inspector Derrick
|
#59
|
|||
|
|||
Quote:
They could have firstly uploaded the shell to the forum dir, and then upload another one (because php shells allow browsing of the directories on a certain web hosting account) in another writeable directory. So yeah, even if they manage to get into your admin panel, and if you have no writeable directories you're pretty much safe. |
#60
|
||||
|
||||
That is not completely true, really depends on the servers setup and configuration.
|
Thread Tools | |
Display Modes | |
|
|
X vBulletin 3.8.12 by vBS Debug Information | |
---|---|
|
|
More Information | |
Template Usage:
Phrase Groups Available:
|
Included Files:
Hooks Called:
|