Cpanel Vulnerability?

To: pen-test@xxxxxxxxxxxxxxxxx, bugtraq@xxxxxxxxxxxxxxxxx
Subject: Cpanel Vulnerability?
From: "Francisco Pecorella" <pecorelf@xxxxxxxxx>
Date: Wed, 12 Dec 2007 08:46:21 -0430
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; bh=yMCMHSs2U/2mjp33I6ERV6A63bqBbkprJ/2UKcFElU4=; b=qivumo9ik25V9fVdWjpcrTDeTr8GP2Ce1PWQyzISXUc4hVgmWW7AjoKardqkHjdg3MlXoMQ4Vx+NWaNunXVoTrCKauOG+OwasBV8i0/oiWw4D5SUAcUFrlwA4gGkKscenR2eudclzf+9e7P+M9xWSfJWpX3X2rfc/dnYEj+YNGE=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; b=nOnj9Og1UB7HuT/FiPcPPRWXQImlzbAF++UYvAmVqxlH+O1Xk8kl4TnlJy53A1Xe0L4HgTEt7TR9/2D5kKbh1/XD2AsT1EjE2XJWwXKFY3ku1H/9NR9O1Y+umgExmqkQH76RDwGWQbqWjhlaQ5qYitCp8THrfhMsU/9JEuakrJc=
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

Folks,

I have been seen some phishings installed in servers with
cPanel11/WebHostManager but installed on folders like _vti_cnf,
_private, etc.

Do you know about a new exploit for cPanel 11/WHM or a new
vulnerability to gain control over those servers?

--
Regards,
FP

Follow-Ups:
- Re: Cpanel Vulnerability?
  - From: Charles Hardin

Prev by Date: [SECURITY] [DSA 1428-2] New Linux 2.6.18 packages fix several vulnerabilities
Next by Date: Re: TCP Port randomization paper
Previous by thread: [SECURITY] [DSA 1428-2] New Linux 2.6.18 packages fix several vulnerabilities
Next by thread: Re: Cpanel Vulnerability?
Index(es):
- Date
- Thread