Slashdot Mirror

← Back to Stories (view on slashdot.org)

Dangerous VBulletin Exploit In the Wild

Posted by Unknown on from the going-back-to-usenet dept.

An anonymous reader writes "vBulletin is a popular proprietary CMS that was recently reported to be vulnerable to an unspecified attack vector. Although vBulletin has not disclosed the root cause of the vulnerability or its impact, we determined the attacker's methods. The identified vulnerability allows an attacker to abuse the vBulletin configuration mechanism in order to create a secondary administrative account. Once the attacker creates the account, they will have full control over the exploited vBulletin application, and subsequently the supported site."

1 of 43 comments (clear)

  1. CMS??? by Impy+the+Impiuos+Imp · · Score: -1, Troll

    Centers for Medicare & Medicaid Services

    It's shut down rigt now, fools. That's why it isn't working right!

    --
    (-1: Post disagrees with my already-settled worldview) is not a valid mod option.