[Fixed] DragonflyCMS 9.0.6.1 Security Fixes
Crează un subiect nou   Răspunde la subiect   Pagina formată prntru tipărire    Pagina de start a forumului Security
Autor Mesaj
DJ Maze
Developer


Data înscrierii: Apr 19, 2004
Mesaje: 5668
Locaţie: http://tinyurl.com/5z8dmv

ScriereTitlul subiectului: Re: Posted on Bugtraq -CPGNuke Dragonfly 9.0.6.1 remote commands
Trimis: Sun Feb 12, 2006 4:20 am
Răspunde cu citat (quote)

Yes those 4 files will patch your system.

About the exploit:

coppermine OR error.php is used to send over a script.
The script CAN'T run on its own so it needs a file that has a bug.
install.php has such bug in the language selector.

If you properly deleted the install.php per the instructions said, then your system is not vulnerable.
Since both the readme and the installer say it, this exploit is actualy "low-risk". But since nobody does what they read or skip to read i've put it up as update notification.

The XSS exploit i discovered in linking.php is of a much more severe security issue. Therefore the update notification is fully in its right.


DJ Maze's server specs (Server OS / Apache / MySQL / PHP / DragonflyCMS)
Fedora 12 / 2.2.15 / 5.1.47 / 5.3.3 / CVS
Sus
Vezi profilul utilizatorului Vizitează site-ul autorului Codul Yahoo Messenger
Ronin
Dragonfly addicted


Data înscrierii: Jun 07, 2004
Mesaje: 476
Locaţie: Calgary, AB

ScriereTitlul subiectului: Re: Posted on Bugtraq -CPGNuke Dragonfly 9.0.6.1 remote comm
Trimis: Sun Feb 12, 2006 8:50 pm
Răspunde cu citat (quote)

DJMaze wrote:
The XSS exploit i discovered in linking.php is of a much more severe security issue. Therefore the update notification is fully in its right.

OK, I did follow the install instructions and removed install.php. However I'm not clear if the linking.php issue mentioned above is seperate? My update notification just talks about removing the install, with no mention of an XSS exploit in linking.php.

Quote:
install.php security exploitRecently someone found a security exploit in install.php.
Always be shure you deleted install.php.
Fixes available at dragonflycms.org/Forum...html#98034

Posted on February 10, 2006

So can someone clarify that if I don't have install.php I'm safe from everything discussed here including the linking.php XSS exploit?

_________________
Cheers,

Ronin
Ronin Technologies
Dragonfly Google Maps Module

Ronin's server specs (Server OS / Apache / MySQL / PHP / DragonflyCMS)
Lunarpages Linux / 1.3.37 / 4.1.22-standard-log / 4.4.4 / 9.1.2.5
Sus
Vezi profilul utilizatorului Vizitează site-ul autorului
goran_wright
Newbie


Data înscrierii: Nov 14, 2005
Mesaje: 7
Locaţie: Philippines

ScriereTitlul subiectului: Re: Posted on Bugtraq -CPGNuke Dragonfly 9.0.6.1 remote comm
Trimis: Tue Feb 14, 2006 7:47 am
Răspunde cu citat (quote)

Quote:
install.php security exploitRecently someone found a security exploit in install.php.
Always be shure you deleted install.php.
Fixes available at dragonflycms.org/Forum...html#98034

Posted on February 12, 2006

I also have this message. but I don't have instll.php..


goran_wright's server specs (Server OS / Apache / MySQL / PHP / DragonflyCMS)
PHP4
Sus
Vezi profilul utilizatorului Vizitează site-ul autorului
Ronin
Dragonfly addicted


Data înscrierii: Jun 07, 2004
Mesaje: 476
Locaţie: Calgary, AB

ScriereTitlul subiectului: Re: Posted on Bugtraq -CPGNuke Dragonfly 9.0.6.1 remote commands
Trimis: Tue Feb 14, 2006 2:21 pm
Răspunde cu citat (quote)

The message is just an advisory goran. Everyone running 9.0.6.1 gets it.
_________________
Cheers,

Ronin
Ronin Technologies
Dragonfly Google Maps Module

Ronin's server specs (Server OS / Apache / MySQL / PHP / DragonflyCMS)
Lunarpages Linux / 1.3.37 / 4.1.22-standard-log / 4.4.4 / 9.1.2.5
Sus
Vezi profilul utilizatorului Vizitează site-ul autorului
Afişează mesajele pentru a le previzualiza:   
Crează un subiect nou   Răspunde la subiect   Pagina formată prntru tipărire    Pagina de start a forumului Security Data este GMT
Du-te la pagina Anterioară  1, 2
Pagina 2 din 2


Mergi direct la:  
Nu puteţi crea un subiect nou în acest forum
Nu puteţi răspunde în subiectele acestui forum
Nu puteţi modifica mesajele proprii din acest forum
Nu puteţi şterge mesajele proprii din acest forum
Nu puteţi vota în chestionarele din acest forum
Nu puteţi ataşa fişiere în acest forum
Nu puteţi descărca fişiere în acest forum

Dedicated Server & Bandwidth Sponsored by DedicatedNOW
User Info [x]

Bine aţi venit Anonymous

Utilizator
Parola
(Înregistrare)

Last CVS commits [x]

Languages [x]

Community [x]

Support for DragonflyCMS in a other languages:

Deutsch
Español

X-links [x]
UltraEdit Browse Happy logo Firefox MySQL PostgreSQL Valid CSS! Valid XHTML 1.0! Unicode Encoded Badge NukeBiz Resources Raven DragonflyCMS Dedicated Now InsideSupport Lampe Berger

Preview theme [x]
Each user can view the site with a different theme.
Themes marked with a * also change the forum look.


You are seeing squares or questionmarks on this page?

All content of this website is copyrighted by the Creative Commons NC-SA
The logos and trademarks used on this site are the property of their respective owners
We are not responsible for comments posted by our users, as they are the property of the poster.
Our server runs on a P3 1.2GHz with 512MB RAM with no accelerators
Support GoPHP5.org
Generarea paginii s-a făcut în 0.7213 secunde şi s-au executat 19 query-uri în 0.1073 secunde
Memory Usage: 2.89 MB
Interactive software released under GNU GPL, Code Credits, Privacy Policy