Home :: Forums :: Downloads :: Shop
  1. Home
  2. Forums
  3. General PHP Nuke Help
  4. Has anyone else been hacked? New worm made the news.

Has anyone else been hacked? New worm made the news.

  Post new topicReply to topicPrintable Version
<< View previous topic View next topic >>
Share: Del.icio.us  Digg  Google  Spurl  Blink  Furl  Y! MyWeb  
#1   Has anyone else been hacked? New worm made the news.
PisnNapalm
CZ Super Newbie
PisnNapalm has been a member for over 20 year's 20 Year Member
Status: Offline
Joined: Apr 06, 2004
0.00 posts per day
Posts: 32
Points: 3,108
   
[ Register or login to view links on this board. ]

This worm got both of my sites a day or so ago. Does anyone know anything else about it?

I was using PHP nuke 7.2 on one site and 7.3 on the other. It got both of them.


EDIT:: I found more info here:: [ Register or login to view links on this board. ]

EDIT2:: More info... This affects only the web server. [ Register or login to view links on this board. ]



Back to top Reply with quote
#2   
Telli
Site Admin
Telli has been a member for over 20 year's 20 Year Member
Occupation: Self Employed
Age: 45
Gender: Male
Fav. Sports Team: Detroit Red Wings
Website:
Status: Offline
Joined: May 26, 2003
1.06 posts per day
Posts: 8089
Points: 494,430
   
If your phpBB is up to date the last patch:
[ Register or login to view links on this board. ]

should stop this. If your unsure you can add this into a .htaccess file in your main root.


RewriteEngine On
RewriteCond %{QUERY_STRING} ^(.*)highlight=\%2527
RewriteRule ^.*$   -   [F,L]




_________________
The path of the righteous man is beset on all sides by the inequities of the selfish and the tyranny of evil men. Blessed is he, who in the name of charity and good will, shepherds the weak through the valley of darkness, for he is truly his brother's keeper and the finder of lost children. And I will strike down upon thee with great vengeance and furious anger those who would attempt to poison and destroy my brothers. And you will know my name is the Lord when I lay my vengeance upon thee. Ezekiel 25:17
Back to top Reply with quote
#3   re: Has anyone else been hacked? New worm made the news.
PisnNapalm
CZ Super Newbie
PisnNapalm has been a member for over 20 year's 20 Year Member
Status: Offline
Joined: Apr 06, 2004
0.00 posts per day
Posts: 32
Points: 3,108
   
Thanks for the info.

I have a nooby question... well more like a few questions.

1. Can I just install phpBB 2.0.11 into phpNuke 7.3? Do I need a script for updating the database as well?

2. If I do need scripts can I use the ones included in the phpnuke 7.6 patched version to upgrade the forums?
Back to top Reply with quote
#4   re: Has anyone else been hacked? New worm made the news.
Gareth
CZ Addict
 Codezwiz Site Donator
Gareth has been a member for over 19 year's 19 Year Member
uk.gif
Occupation: Student, Webmaster
Gender: Male
Fav. Sports Team: Liverpool FC
 Status: Offline
Joined: May 29, 2004
0.08 posts per day
Posts: 587
Points: 38,220
   
Hi Telli, i use RewriteRule for my .html pages which are actually php, but could i please know a little more about what that script does you posted?

Thanks

Gareth




_________________
[ Register or login to view links on this board.]
Back to top Reply with quote
#5   
JRSweets
CZ Active Member
 Codezwiz Site Donator
JRSweets has been a member for over 20 year's 20 Year Member
usa.gif massachusetts.gif
Age: 42
Gender: Male
Fav. Sports Team: NE Patriots
Website:
Status: Offline
Joined: Apr 07, 2004
0.04 posts per day
Posts: 259
Points: 19,861
  MSN Messenger 
I believe it just returns a forbidden page to people/systems trying to run the exploit.
Back to top Reply with quote
#6   
Telli
Site Admin
Telli has been a member for over 20 year's 20 Year Member
Occupation: Self Employed
Age: 45
Gender: Male
Fav. Sports Team: Detroit Red Wings
Website:
Status: Offline
Joined: May 26, 2003
1.06 posts per day
Posts: 8089
Points: 494,430
   
PisnNapalm

1,) No
2.) Yes

The preblem is the highlight= part of the search feature. This basically rewrites it before it can get in.




_________________
The path of the righteous man is beset on all sides by the inequities of the selfish and the tyranny of evil men. Blessed is he, who in the name of charity and good will, shepherds the weak through the valley of darkness, for he is truly his brother's keeper and the finder of lost children. And I will strike down upon thee with great vengeance and furious anger those who would attempt to poison and destroy my brothers. And you will know my name is the Lord when I lay my vengeance upon thee. Ezekiel 25:17
Back to top Reply with quote
Display posts from previous:      
Add To: Del.icio.us  Digg  Google  Spurl  Blink  Furl  Y! MyWeb  
<< View previous topic View next topic >>
Post new topicReply to topic

Jump to 
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You cannot download files in this forum