Ravens PHP Scripts: Forums
 

 
  Forum Index  •  Forum FAQ  •  Search  •  Memberlist  •  Usergroups  •  Profile  •  Log in to check your private messages  •  Log in

Wordpress worm released
 View next topic
View previous topic
Post new topic   Reply to topic    Ravens PHP Scripts And Web Hosting Forum Index -> Security - Other
Author Message
Susann
Moderator



Joined: Dec 19, 2004
Posts: 3191
Location: Germany:Moderator German NukeSentinel Support
PostPosted: Thu Aug 02, 2007 5:56 pm Reply with quote
Interested to patch your current blog version with a friendly worm before there is a new version of wordpress out ?


Check this:

http://mybeni.rootzilla.de/mybeNi/


Many guys have already patched their blogs but as far as I know there is no official statement about these new 7 security holes from the wordpress team.
 
View user's profile Send private message
kguske
Site Admin



Joined: Jun 04, 2004
Posts: 6437
PostPosted: Thu Aug 02, 2007 8:33 pm Reply with quote
Scary...

_________________
I search, therefore I exist...
Only registered users can see links on this board! Get registered or login! 
View user's profile Send private message
evaders99
Former Moderator in Good Standing



Joined: Apr 30, 2004
Posts: 3221
PostPosted: Thu Aug 02, 2007 9:02 pm Reply with quote
Going to check this out now.. none of the referenced sites are in English though. Oh well, time to patch it up

_________________
- Only registered users can see links on this board! Get registered or login! -

Need help? Only registered users can see links on this board! Get registered or login! 
View user's profile Send private message Visit poster's website
evaders99
PostPosted: Thu Aug 02, 2007 9:51 pm Reply with quote
Went ahead and rewrote the changes in English, verified them on my Wordpress install
http://evaders.swrebellion.com/forums/postp401.html#401

Feel free to use this or the pre-packaged files
 
Susann
PostPosted: Fri Aug 03, 2007 4:31 pm Reply with quote
Oh, thats really a big thing Smile
www.symantec.com wrote also something about this worm.
The strange thing was that there was no message to chmod the files. I used it twice and its good that I checked my files and the authors site again otherwise I wouldn´t know that there are small changes required for some files after the friendly worm did his job.

Trust is good, control is better.
 
evaders99
PostPosted: Mon Aug 06, 2007 7:48 am Reply with quote
Yea I wouldn't trust a worm to use the same vulnerability to patch it. It's like the hackers that only want to "improve your security"... right.. Wink
 
Display posts from previous:       
Post new topic   Reply to topic    Ravens PHP Scripts And Web Hosting Forum Index -> Security - Other


 Jump to:   




View next topic
View previous topic
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum


Powered by phpBB © 2001-2007 phpBB Group
All times are GMT - 6 Hours
 
Forums ©