The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Security issue

Discussion in 'Security' started by omenix, Jun 29, 2009.

  1. omenix

    omenix Active Member

    Joined:
    Aug 24, 2005
    Messages:
    38
    Likes Received:
    0
    Trophy Points:
    6
    Location:
    /dev/null
    Hello guys,

    First of all I'm not sure whether this is the right section to post or not. Please move it somewhere else if needed.. someone has found a vulnerability @ /frontend/x3/stats/lastvisit.html?domain= (Directory traversal) but username/password is required. I hope you guys can release an update as soon as possible for this vulnerability. Thanks.
     
  2. mtindor

    mtindor Well-Known Member

    Joined:
    Sep 14, 2004
    Messages:
    1,279
    Likes Received:
    36
    Trophy Points:
    48
    Location:
    inside a catfish
    cPanel Access Level:
    Root Administrator
    I'd suggest / ask that you open a ticket with Cpanel at http://tickets.cpanel.net, providing every bit of information you know about said "vulnerability." That would help everyone out.

    Thanks!

    Mike
     
  3. cPanelDavidG

    cPanelDavidG Technical Product Specialist

    Joined:
    Nov 29, 2006
    Messages:
    11,279
    Likes Received:
    8
    Trophy Points:
    38
    Location:
    Houston, TX
    cPanel Access Level:
    Root Administrator
    Please email security@cpanel.net with any details you can provide regarding replicating this issue etc.
     
  4. omenix

    omenix Active Member

    Joined:
    Aug 24, 2005
    Messages:
    38
    Likes Received:
    0
    Trophy Points:
    6
    Location:
    /dev/null
    Thanks. Report has already sent.
     
  5. ehsanix

    ehsanix Member

    Joined:
    Mar 3, 2004
    Messages:
    13
    Likes Received:
    0
    Trophy Points:
    1
    Any response from Cpanel ?!
     
  6. flashweb

    flashweb Well-Known Member

    Joined:
    Mar 13, 2003
    Messages:
    243
    Likes Received:
    0
    Trophy Points:
    16
    cPanel Access Level:
    Root Administrator
  7. konrath

    konrath Well-Known Member

    Joined:
    May 3, 2005
    Messages:
    367
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Brasil
    #7 konrath, Jun 30, 2009
    Last edited: Jun 30, 2009
  8. ehsanix

    ehsanix Member

    Joined:
    Mar 3, 2004
    Messages:
    13
    Likes Received:
    0
    Trophy Points:
    1
    I am using (RELEASE tree) : cPanel 11.24.4-R36167 - WHM 11.24.2 - X 3.9

    we have this problem. do you think I should use Stable tree instead ?
     
  9. cPanelKenneth

    cPanelKenneth cPanel Development
    Staff Member

    Joined:
    Apr 7, 2006
    Messages:
    4,458
    Likes Received:
    22
    Trophy Points:
    38
    cPanel Access Level:
    Root Administrator
    This vulnerability is fixed in EDGE 36912+ and CURRENT 36913+. RELEASE and STABLE will be published soon with the same fix.

    The vulnerability allows an authenticated user to view any file he has permission to access. An intrepid user can accomplish something similar by using a CGI or PHP script via Apache. No privilege escalation is involved, hence access to restricted files, such as /etc/shadow, is not possible.
     
  10. nicosoft

    nicosoft Member

    Joined:
    Oct 8, 2008
    Messages:
    10
    Likes Received:
    0
    Trophy Points:
    1
    Nice Info, Sir. But Before the RELEASE and STABLE already fix. I have to disable Latest Visitor in the Feature Manager on WHM. Thus, the hole is Minimize. Thank You.:D
     
    #10 nicosoft, Jul 1, 2009
    Last edited: Jul 1, 2009
  11. d_t

    d_t Well-Known Member

    Joined:
    Sep 20, 2003
    Messages:
    243
    Likes Received:
    1
    Trophy Points:
    18
    Location:
    Bucharest
    Actually, open_basedir prevent this for mod_php. But indeed, can be done from CGI.

    Please let us know when the new release will be available (latest is cPanel 11.24.4-R36167 and has the bug).
     
Loading...

Share This Page