Re: VHCS <= 2.4.7.1 (vhcs2_daemon) Remote Root Exploit

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re: VHCS <= 2.4.7.1 (vhcs2_daemon) Remote Root Exploit
From: Maximiliano Müller <mmuller@xxxxxxxxxxxxxxxxxx>
Date: Wed, 12 Mar 2008 01:47:29 +0000 (UTC)
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
References: <20080309210745.12361.qmail@xxxxxxxxxxxxxxxxx>
Sender: news <news@xxxxxxxxxxxxx>
User-agent: Loom/3.14 (http://gmane.org/)

Hi, 

In case you didn't have this patch. Patch  login.php as soon 
as possible (old bug).

http://vhcs.puuhis.net/index.php?option=com_content&task=view&id=14&Itemid=1

For the new bug this is a quick solution

* to modify the php.ini and to disable shell and execute functions

disable_functions = system,system_exec,passthru,shell,shell_exec,exec

* to not permit LOAD INLINE from mysql.  We can disable this feature with 
the following  line to the my.cnf in the section [mysqld]

local-infile=0

References:
- VHCS <= 2.4.7.1 (vhcs2_daemon) Remote Root Exploit
  - From: gmdarkfig

Prev by Date: iDefense Security Advisory 03.11.08: Microsoft Outlook mailto Command Line Switch Injection
Next by Date: Cisco Security Advisory: Cisco Secure Access Control Server for Windows User-Changeable Password Vulnerabilities
Previous by thread: VHCS <= 2.4.7.1 (vhcs2_daemon) Remote Root Exploit
Next by thread: Re: Re: VHCS <= 2.4.7.1 (vhcs2_daemon) Remote Root Exploit
Index(es):
- Date
- Thread