Current time: 11-25-2024, 04:25 PM Hello There, Guest! (LoginRegister)


Post Reply 
 
Thread Rating:
  • 0 Votes - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Security hole in ISPCP 1.0.5
Author Message
kilburn Offline
Development Team
*****
Dev Team

Posts: 2,182
Joined: Feb 2007
Reputation: 34
Post: #9
RE: Security hole in ISPCP 1.0.5
As nuxwin and RatS have already said, there is no evidence of hacking in the provided logfiles. Someone was able to use a reseller/admin account to hijack the websites, but this is password stealing, not a security hole.

Now, if "logfiles haven't been preserved", this means that the attacker was somehow able to obtain root access to the machine (after hijacking the websites). This can happen because (1) there *is* a security hole in ispcp (but we're getting absolutely no clue about where it might be) or (2) he had some outdated software (a service daemon or the kernel itself) that the hacker exploited to escalate privileges.

The point is that we absolutely need more info to discern which was the case.
07-16-2010 07:39 PM
Visit this user's website Find all posts by this user Quote this message in a reply
Post Reply 


Messages In This Thread
Security hole in ISPCP 1.0.5 - Alex Joe - 07-14-2010, 07:38 AM
RE: Security hole in ISPCP 1.0.5 - Nuxwin - 07-14-2010, 07:42 AM
RE: Security hole in ISPCP 1.0.5 - RatS - 07-14-2010, 05:38 PM
RE: Security hole in ISPCP 1.0.5 - ZooL - 07-15-2010, 06:31 AM
RE: Security hole in ISPCP 1.0.5 - gOOvER - 07-15-2010, 06:56 AM
RE: Security hole in ISPCP 1.0.5 - nuke3d - 07-16-2010, 06:36 PM
RE: Security hole in ISPCP 1.0.5 - kilburn - 07-16-2010 07:39 PM
RE: Security hole in ISPCP 1.0.5 - joximu - 07-16-2010, 08:12 PM
RE: Security hole in ISPCP 1.0.5 - kilburn - 07-20-2010, 08:32 PM
RE: Security hole in ISPCP 1.0.5 - nuke3d - 07-20-2010, 09:23 PM
RE: Security hole in ISPCP 1.0.5 - joximu - 07-20-2010, 11:16 PM

Forum Jump:


User(s) browsing this thread: 2 Guest(s)