phpbb attacked again - zatron passthru!

This is an archive of the phpBB 2.0.x support forum. Support for phpBB2 has now ended.
Forum rules
Following phpBB2's EoL, this forum is now archived for reference purposes only.
Please see the following announcement for more information: viewtopic.php?f=14&t=1385785
User avatar
mes
Registered User
Posts: 35
Joined: Wed Apr 07, 2004 11:05 am

Post by mes »

How can I firewall a port on my server? How come it is only me affected by this could it not happen to anyone using phpbb, seeing as im using the latest version?

anyway, thanks for the advice TMAN.

Mes
The Techboy
Registered User
Posts: 207
Joined: Tue May 04, 2004 7:37 pm

Post by The Techboy »

Before you upgraded your forum, was it exploited?

Perhaps, this is the host using out-of-date information.
Eat recycled food. It's good for the environment and OK for you.
User avatar
Techie-Micheal
Security Consultant
Posts: 19511
Joined: Sun Oct 14, 2001 12:11 am
Location: In your servers

Post by Techie-Micheal »

mes wrote: Not sure about apace access logs or IIS access logs.

We use www.123-reg.co.uk for hosting and access via myserverworld.com administered by pipex.

Basically they are saying dont use phpbb, but I like phpbb and am used to it never had any problems like this before.

The only info I have is : It has been noticed that your site is vulnerable and has been exploited as a result by using the "passthru" option.

If that means anything to anyone i'm not sure, but were keeping the board down for the time being.

It was a fresh install of phpbb 2.0.11 on a database from a previous instalation.

Cheers,

mes
Hrm. Could you ask them for access logs? Also, how large is your database?
Proven Offensive Security Expertise. OSCP - GXPN
Locked

Return to “2.0.x Support Forum”