another community hacked ...

[sde]

another community i visit was hacked last night, and he's only suspect to some phpbb exploit to root the server.

anyone aware of a phpbb exploit?

[Admin]

rooted!?!?!??? wth!~? from phpbb??? whoa. i would imagine that would take multiple exploits to get root.

i haven't heard anythign about this, but i dont really follow phpbb...

[idx]

Yeah. Seems a bit of a stretch unless he's really ruled out everything else.

-r

[Admin]

something is going on....

http://www.phpbb.com/phpBB/viewtopic.php?t=240513

[idx]

http://www.hardened-php.net/advisories/012004.txt

Hm. Guess some PHP issues (unserialize) did cause problems with phpbb and several others..

-r

[sde]

check this out: http://mvnation.com/phpBB/

lol .. they are lucky the guy isn't that big of a jerk.

[Admin]

lolz

[Belisarius]

Hope you've updated. I know you're not running phpBB here, but I don't think it would take much to alter it to go after vBulletin Board.

[sde]

we are on the latest version of vbulletin. if vb was vulnerable to this, i think they would have released a patch right?

[Belisarius]

The problem is that while it targets phpBB, the exploit used is the PHP exploit. They're targeting phpBB, but vB is just as vulernable, I think.

It's sort of like your neighbor's house is broken into via a shattered window; your windows aren't any more secure, it's just that they didn't break into your house.

[Admin]

PHP should be upgraded.

[sde]

everything is re-compiling now. we'll be on 4.3.10 in a few minutes. thanks for the links B

[sde]

http://www.securityfocus.com/archive...3/2004-12-19/0

lots of details.

[sde]

so i would assume that the most likely culprit would be the upload exploit. what would someone upload to a higher directory that would compromise a system?

[Belisarius]

Hmmm, that's the only site that says only Windows is vulnerable. Has anyone verified that?