Separate names with a comma.
Discussion in 'General Discussion' started by nickp666, Aug 22, 2006.
anyone seen this?
Nope, but it looks low-impacting. To run the exploit scripts, you'll need to be logged into cPanel and only "you" would be affected. I can't see any disclosure of information the user would not be already able to access.
(Should still be patched though )
I've seen several such "exploits" in secunia that never make it onto vulndev or bugtraq that are hardly worthy of the name. If anything, they're simply bugs. From the way I read it, you can basically exploit yourself, since as richy points out, you have to be authenticated anyway.
I was aware of it only being an issue to a logged in user, and I have to agree with chirpy about secunia's 'vunerabilities' being a bit on the monkey side just thought I'd post it to bring it to people attention, thanks guys
Do keep posting them if you find them, they're usually good for a chuckle