The time now is Mon Sep 08, 2008 9:35 am
Log in: Username: Password:
Search forums for:
  
 
ZoneMetrics.com Forum Index
  

ZoneX forums - The new wave in forum management!

FAQ Search Register Log in

Important info regarding possible forum exploit

ZoneMetrics.com Forum Index -> ZoneX Corner -> Bug Reports

Post new topic   Reply to topic
Author Message
hunter



Joined: 17 Jan 2006
Posts: 7
PostPosted: Wed Aug 30, 2006 8:27 am    Post subject: Important info regarding possible forum exploit Reply with quote
Recently, on several security forums, one possible Zonemetrics forum vulnerability was published...

I find it important to inform you that this vulnerability is not that dangerous as, firstly, if ysomebody wants to exploit it, he must have exact file tree and correct name of the malicious script because that variable is never used alone but always in concatanation with script name and generic extension and, secondly, if site has register_globals set to OFF, one cannot use this exploit at all...

So, recommendation for all Zonemetrics users is very simple - if you ar using any Zonemetrics version, simply make sure that register_globals is set to OFF and you have nothing to worry about...
Back to top
Display posts from previous:   
Post new topic   Reply to topic All times are GMT

ZoneMetrics.com Forum Index -> ZoneX Corner -> Bug Reports

Page 1 of 1

Related topics:

 



Privacy Policy | Registration terms | Contact us
All Rights Reserved by ZoneX forums ©2005 - 2006
Forums powered by ZoneMetrics.com
ZoneXForums code is based on PHPBB code. Development supported by Online Health Community
ZoneXForums are published under GNU General Public License