On Sat, Nov 16, 2013 at 12:53:38AM -0600, Rob Whitney wrote: > This vulnerability was actually discovered after a client's website was > hacked by a group spreading a Pro-Islamic message. Here is a redacted > version of the access log at the point of exploitation. Disclosure date 2009-10-19 http://osvdb.org/show/osvdb/59051 A lot of software using that piece of code are still vulnerable. Especially plugins/modules. Also lot of attacks on-going using this in my honeypots (AS29422). Attacks are not verifying software version numbers or existence of the software. They just attack with all payloads and hope that some sites get infected. I have been actively sending abuse-reports of those and notified several project upstreams about the vulnerability. You can contact me off the list if you are interested to get more information. --- Henri Salo
Attachment:
signature.asc
Description: Digital signature
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/