|
 |
|
|
|
 |
|
|
| |
|
Thread tools
Search this thread
Display Modes
|
|
|
03-31-2007, 04:05 AM
|
#1
|
Status: R'tard
Join date: Jan 2007
Location: USA
Expertise:
Software:
Posts: 2,959
|
 3.6.5
vBulletin had an update, due to a HUGE security issue with moderators or something. Check up on that guys  
|
|
|
|
03-31-2007, 04:17 AM
|
#2
|
Status: Geek
Join date: Apr 2006
Location: Denver, CO
Expertise: Software
Software: Chrome, Notepad++
Posts: 6,894
|
the security issues circumstances where near impossible to do, IIRC they had to have the same IP as an admin in the panel.
|
|
|
|
03-31-2007, 04:44 AM
|
#3
|
Status: R'tard
Join date: Jan 2007
Location: USA
Expertise:
Software:
Posts: 2,959
|
Well I read up on it in my vB and didn't see that?
|
|
|
|
03-31-2007, 07:59 AM
|
#4
|
Status: Member
Join date: May 2006
Location: Australia
Expertise:
Software:
Posts: 413
|
"and in order to exploit the problem a number of highly unlikely circumstances must exist simultaneously."
Doesn't sound like a big deal weather people upgrade or not.
|
|
|
|
03-31-2007, 12:44 PM
|
#5
|
Status: Senior Member
Join date: Jul 2005
Location:
Expertise:
Software:
Posts: 835
|
3.6.5 has been out for a while now, the post on vBulletins website was made on 1st March...
It is worth noting that in order to exploit the problem highlighted by the report, the attacking user must satisfy the following conditions:
Must already have moderator privileges
Must share the same IP address (or the number of IP octets specified in the Admin Control Panel for IP address matching) with an existing administrator who is currently logged in to the Admin Control Panel
Must know the Alt-IP and user agent (exact browser identification) of the administrator
OR must know the license number of the site being attacked
|
|
|
|
|
04-01-2007, 08:58 AM
|
#6
|
Status: Insert Rave Here
Join date: Dec 2006
Location: Auckland, NZ
Expertise:
Software:
Posts: 1,426
|
Hmm big forums never update lol, i dont think were goin to get hacked
|
|
|
|
04-01-2007, 03:45 PM
|
#7
|
Status: Junior Member
Join date: Mar 2007
Location: Norway
Expertise:
Software:
Posts: 63
|
But its the big forums people like to hack?
The big forums do get hacked eventually! 
trust me, i now
Freddy
|
|
|
|
04-01-2007, 04:12 PM
|
#8
|
Status: I love this place
Join date: May 2006
Location:
Expertise:
Software:
Posts: 603
|
It's the big forums who realise taking backups daily is a good idea.
|
|
|
|
04-01-2007, 04:19 PM
|
#9
|
Status: Junior Member
Join date: Mar 2007
Location: Norway
Expertise:
Software:
Posts: 63
|
So true so true...
But, people should upgrade their versions even they fell secure enough with their current version. And that they feel secure when they take backup ever day.. But its never fun having their own forums down for several hours because some idiot of an hacker wanted some fun!
Get me?
Freddy!
|
|
|
|
04-01-2007, 05:49 PM
|
#10
|
Status: OG
Join date: Apr 2006
Location: California
Expertise: Design, Music, Xhtml, Css
Software: Photoshop, Coda, FL Studio
Posts: 2,007
|
The next update ant until 5.6.7 guys.
|
|
|
|
|
|
|
|
|
|
Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
|
|
|
| Thread Tools |
|
|
| Display Modes |
 Linear Mode
|
|
|
Forum Contains New Posts 
Forum Contains No New Posts 
Forum is Closed 