The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Security Vulnerability?

Discussion in 'Security' started by anup123, Jun 22, 2005.

  1. anup123

    anup123 Well-Known Member

    Joined:
    Mar 29, 2004
    Messages:
    897
    Likes Received:
    1
    Trophy Points:
    18
    Location:
    This Planet
  2. chirpy

    chirpy Well-Known Member

    Joined:
    Jun 15, 2002
    Messages:
    13,475
    Likes Received:
    20
    Trophy Points:
    38
    Location:
    Go on, have a guess
  3. Darren

    Darren Well-Known Member
    Staff Member

    Joined:
    Dec 26, 2001
    Messages:
    1,957
    Likes Received:
    0
    Trophy Points:
    36
    Location:
    Houston, TX
    This is a known and fixed problem, it was released a few days ago but only affects versions of cpanel somewhere around 6 months old (cpanel 10.x is not affected). for anyone who has not updated in quite some time, updating to the latest release of whatever build version you follow will fix it.
     
  4. anup123

    anup123 Well-Known Member

    Joined:
    Mar 29, 2004
    Messages:
    897
    Likes Received:
    1
    Trophy Points:
    18
    Location:
    This Planet
    From secunia:
    The vulnerability has been confirmed in version 10.2.0-R82. Other versions may also be affected.

    Not sure what this means as

    RELEASE
    10.2.0-RELEASE_82
    (Sat May 7 17:32:13 2005)

    Is the one that's available latest.

    Anup
     
  5. DigiCrime

    DigiCrime Well-Known Member

    Joined:
    Nov 27, 2002
    Messages:
    399
    Likes Received:
    0
    Trophy Points:
    16
    i posted this on bugzillia early this morning I got yelled at for it :eek: I forget about sending it to security@cpanel.net

    Oh well
     
  6. Darren

    Darren Well-Known Member
    Staff Member

    Joined:
    Dec 26, 2001
    Messages:
    1,957
    Likes Received:
    0
    Trophy Points:
    36
    Location:
    Houston, TX
    Hello again,
    I investigated this a bit further and found that some browsers still allow for it to work. The head developer put in a patch for it that is out in EDGE now, so if anyone is looking to test it, that's the build you need.
     
Loading...

Share This Page