donators

n@work Internet Informationssysteme GmbH
Your ad here

sponsors

TYPO3 Blog
TYPO3 Anbieter

My iPhone Apps


Get PwGen now for FREE in AppStore

Get PwGen Pro in AppStore

support @ Amazon

If you like to support this site and you want to by something at Amazon, please use this link for purchasing your desired items. This does not cost you anything more than the normal price but I got a small revenue from your order.
Thank you!

Advertising

print page print page

Security Bulletin TYPO3-20050812-1

By: Thomas Hempel

13.08.05 09:55 Age: 3 yrs

Hello,

Evyrone out there who uses the cc_awstats extension should update it to the current version 0.10!!! There where an remote exploir with AWstats, where an input validation vulnerability allows remote attackers to execute arbitrary commands with the rights of your webservice! The problem is fixed witth AWstats version 6.5 which is available through the current cc_awstats version 0.10.

 

Greets,

Thomas

Related News:
 Security Bulletins for chc_forum and th_mailformplus - 07-11-05 17:20
Links:

cc_awstats

Reference


Please leave a comment

Back to: Blog

Leave a Reply

You have to activate JavaScript to post comments!

Calendar

November 2005
M T W T F S S
« Oct   Dec »
 01020304506
07080910111213
14151617181920
21222324252627
282930  

Tagcloud

personal podcast development page installer web TYPO3 fun community t3board

Latest comments

  • Thomas

    Hi Jürgen, yes you're right. The page was actually not hacked and I used an inappropriate wordi...

  • Juergen Egeling

    Hi, as far as we investigated, typo3.org was not hacked, but one password was exposed, and a person...

  • Jens

    Hy, it is ruby on rails. :) Just added a Video to the site. The Podcast done by Kasper. 21...

  • Internetagentur München

    I am looking forward to meet you all there!

  • Emile

    Great! Would be nice if something was done about the strict validation as well. The border attribut...

Blogroll

Advertising

Meta







Valid XHTML 1.0 Strict
Valid CSS!