murderskill Posted April 27, 2006 Posted April 27, 2006 Here is there new remote command execution exploit POC. http://milw0rm.com/exploits/1720Its possible to execute commands and take over the the website. PS. its also possible this forum is vulnerable..look at the bottom fo the forum.
Mumbles Posted April 27, 2006 Posted April 27, 2006 We are version v1.3.1, not 2.anything. Version 1.3.1 is the last free one. This forum is run entirely by volunteers, and with no advertising, so all money comes out of our own pockets.
Mumbles Posted April 28, 2006 Posted April 28, 2006 It looked more like just the Version 2 series from that link. In any case, I have no idea how to fix it, and everything is backed up on a regular basis.
murderskill Posted April 28, 2006 Author Posted April 28, 2006 It looked more like just the Version 2 series from that link. In any case, I have no idea how to fix it, and everything is backed up on a regular basis. Seems like you actually didn't read the code I sent you! One thing im good at. Computer Security. Read the code next time not just the link. ROFL
Mumbles Posted April 28, 2006 Posted April 28, 2006 I read it the best I could. Frankly, I don't know shit about coding for the most part. I did see "## Invision Power Board 2.* commands execution exploit by RST/GHC" though, which gave me the idea that it was only a problem with version 2 software.
teknix Posted April 28, 2006 Posted April 28, 2006 Wouldn't this have been better to PM mumbles about than to post a public topic about it so everyone knows that there is a hack and make it easier for someone to just read this and do a little research and take down the site? Just my feelings.
murderskill Posted April 28, 2006 Author Posted April 28, 2006 Wouldn't this have been better to PM mumbles about than to post a public topic about it so everyone knows that there is a hack and make it easier for someone to just read this and do a little research and take down the site? Just my feelings. I messaged him on aim before I posted this.
Recommended Posts