Wieners, Brats, Franks, we've got 'em all.
0 Members and 1 Guest are viewing this topic.
[snip]HostGator says hackers compromised its servers using a previouslyunknown security hole in cPanel, the control panel software that iswidely used by hosting providers. "I can tell you with all accuracythat this is definitely due to a cPanel exploit that provides rootaccess and all cPanel servers are affected," said HostGator systemadministrator Tim Greer. "This issue affects all versions of cPanel,from what I can tell, from years ago to the current releases, includingStable, Release, Current and Edge."cPanel has just released a fix. "Running /scripts/upcp will fix thevulnerability in all builds," cPanel said in a message on its userforums. "Please note that this is a local exploit which requires accessto a cPanel account. ... If you believe you have been exploited throughthis vulnerability, you are welcome to submit a support request forassistance."Hackers gained access to HostGator's servers late Thursday and beganredirecting customer sites to outside web pages that exploit anunpatched VML security hole in Internet Explorer to infect web surferswith trojans. The existence of the new "0-day" exploit of cPanel leavesa large number of hosting companies vulnerable to similar attacks untilthey install the patch. The riusk is mitigated somewhat by the factthat it is a local exploit, meaning any attack on a host must belaunched from an existing account with cPanel access.HostGator site owners said iframe code inserted into their web pageswas redirecting users to the malware-laden pages. Company staff madeseveral efforts to reconfigure servers on Friday, only to have theexploits recur. By early Saturday morning, HostGator managers wereassuring users that the cause of the redirections had been isolated,and was due to a new exploit targeting cPanel.[snip]Link:http://news.netcraft.com/archives/2006/09/23/hostgator_cpanel_security_hole_exploited_in_mass_hack.html- ferg