Perl.Santy virus attacks phpBB-based message boards

Announcements and discussions about new releases of CCS64 and related tools and materials.

Moderator: Håkan Sundell

Post Reply
StevenRoy
Posts: 66
Joined: Mon Sep 15, 2003 7:14 am
Contact:
Contact StevenRoy

Perl.Santy virus attacks phpBB-based message boards

Post by StevenRoy »

This probably isn't completely relevant here, but it's still interesting:

From Symantec's Security Response site:

Perl.Santy is a worm written in Perl script that attempts to spread to Web servers running versions of the phpBB 2.x bulletin board software prior to 2.0.11, which are vulnerable to the PHPBB Remote URLDecode Input Validation Vulnerability. Other systems are not affected. If successful, the worm copies itself to the server and overwrites the files with the following extensions...


The version of phpBB used on this CCS64 message board is 2.0.11, which is safe. I feel better now that I've checked.
Image
Top
Stuart Toomer
Site Co-Admin
Posts: 786
Joined: Wed Aug 20, 2003 2:46 pm
Location: East Yorkshire, England

Re: Perl.Santy virus attacks phpBB-based message boards

Post by Stuart Toomer »

StevenRoy wrote:This probably isn't completely relevant here, but it's still interesting:

From Symantec's Security Response site:

Perl.Santy is a worm written in Perl script that attempts to spread to Web servers running versions of the phpBB 2.x bulletin board software prior to 2.0.11, which are vulnerable to the PHPBB Remote URLDecode Input Validation Vulnerability. Other systems are not affected. If successful, the worm copies itself to the server and overwrites the files with the following extensions...


The version of phpBB used on this CCS64 message board is 2.0.11, which is safe. I feel better now that I've checked.


I got Hakan to upgrade it a few days ago and it seems to be fine. Please infom me if there are any problems with the forum itself.
Kind regards,

Stuart Toomer.
Top
Post Reply

Return to “CCS64 News”