| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Fri, 29 Sep 2006 14:23:14 -0400 From: Rob Lemos <mail@...ertlemos.com> To: Todd Burroughs <todd@...sec.net> Cc: full-disclosure@...ts.grok.org.uk Subject: Re: cpanel exploit On Fri, 2006-09-29 at 06:56 -0400, Todd Burroughs wrote: > Anyone have any info on this cpanel exploit. I have a friend who found it > pretty open to full user level acess, but not root. > > I'm curious to know what the hole is/was. > > http://www.thewhir.com/marketwatch/092706_Web_Hosts_Hit_by_Hackers.cfm > > http://news.netcraft.com/archives/2006/09/23/hostgator_cpanel_security_hole_exploited_in_mass_hack.html More information here as well: http://www.securityfocus.com/news/11415 -- | robert lemos | mail@...ertlemos.com | | editor-at-large | securityfocus | | security watch columnist | pc magazine | | technology & science journalist | http://www.robertlemos.com | _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists