Slashdot Mirror

← Back to Stories (view on slashdot.org)

Backdoor Found In OpenX Ad Platform

Posted by Soulskill on Tuesday August 6, 2013 @07:53AM from the eroding-what-little-trust-exists dept.

mask.of.sanity writes "A backdoor has existed for at least seven months in a platform sold by OpenX, the self-described global leader of digital advertising which counts the New York Post, Coca Cola, Bloomberg and EA among its customers. The backdoor was contained within the official OpenX package and recently removed. Security researchers say it meant those who downloaded the compromised software could have provided attackers full access to their web sites."

1 of 43 comments (clear)

Min score:

Reason:

Sort:

Re:interestingly, has always been open source by wimg · 2013-08-06 10:11 · Score: 5, Interesting

I'm the third party you're talking about, the developer of phpAdsNew. Sadly, things took a turn for the worse when the company OpenAds (now OpenX) decided to make a business out of the advertising server. Although they've made a lot of money, the open source version has been neglected completely.
I put the download page online because I didn't like the fact that you had to register, but I'm haven't been involved in the project since 2002, so there's not much I can do about this shameful bug.