[Pkg-awstats-devel] Bug#353932: machine compromised with
awstats.pl?configdir
Eddie A. Tejeda
eddietejeda at nailchipper.com
Thu Apr 13 12:34:09 UTC 2006
There was not another package installed. This was a new machine with
things done only thought apt-get.
--
Eddie Tejeda
On Mar 4, 2006, at 7:37 PM, Ben Hutchings wrote:
> Eddie Tejeda <eddietejeda at nailchipper.com> wrote:
>> Someone was able to install zbind on my machine using the
>> following scripts.
>> The damage was limited to www-data, a restricted user, and logs
>> were able
>> to monitor behaviour, but posed a large threat.
> <snip>
>
> I notice that the attacker tried a number of different URLs. Is it
> possible that there was a second version of awstats installed, aside
> from the packaged version, and that that was vulnerable to the
> configdir
> exploit?
>
> Ben.
>
> --
> Ben Hutchings
> Everything should be made as simple as possible, but not simpler.
> - Albert
> Einstein
More information about the Pkg-awstats-devel
mailing list