Found security expliot in port phpBB 2.0.8 FreeBSD4.10

Ed Stover estover at nativenerds.com
Thu Dec 30 01:14:41 PST 2004


Thanks for all the input guys and gals. didn't meant to start a flame
war ;) 
On Mon, 2004-12-27 at 15:36 -0700, estover at nativenerds.com wrote:
> I think, there is a neat exploit in the phpbb2.0.8 because I found my
> home
> page defaced one dark morning. The patch for phpBB is here.
> http://www.phpbb.com/downloads.php
> 
> The excerpt of the log is attached.
> 
> I believe the link to the described exploit is here.
> http://secunia.com/advisories/13239
> 
> The defacement braggen page is here filter to show the exploited
> FreeBSD
> machines that aneurysm.inc has defaced 
> http://www.zone-h.org/en/defacements/filter/filter_defacer=aneurysm.inc/filter_system=FreeBSD/page=1/
> 



More information about the freebsd-security mailing list