PDA

View Full Version : Re: 'Italian job' Web attack hits more than 10,000 sites



Rick Chisholm
21-Jun-2007, 07:36 PM
could be weak perms - I had my images dir switched to 777 to test something
and forgot to switch it back... had some new & special files in there in
under 48 hours. was a fairly harmless hack.

but just sticking an iFrame element on a site with src= pointing to the
box 'O sploits is quite straight forward. I'd think the server portion of
this attack is XSS against some inherently weak add-on like Xoops or
unpatched WordPress etc.

--
http://brokertech.parallel42.ca/blog

Marcel Cox
22-Jun-2007, 07:18 AM
Rick Chisholm wrote:

>
>could be weak perms

I've seen an article mentioning a cPanel vulnerability being exploited.

--
Marcel Cox
http://support.novell.com/forums

Rick Chisholm
22-Jun-2007, 01:39 PM
Marcel Cox wrote:

> I've seen an article mentioning a cPanel vulnerability being exploited.

I know my hosting agent uses cPanel - it's likely quite common.

--
http://brokertech.parallel42.ca/blog