www.uburst.com www.uburst.com

"Security hole?"

Go back to the LobbyClick here to Go Back to Main ListingClick here to see helpClick here to Search the Forum

General Questions
Forum Type: Public
Moderator: edmunds
Time Zone: EST
Printer Friendly Format
Original Message
 
"Security hole?"
Posted by jill on Apr-05-01 at 06:12 PM (EST)
My client, Chuck, received the email below which says that there is a security hole in the ustorekeeper program. If you click on the links.. you can see that they actually accessed his server and were able to read the various directories.. including his secure bin. This is, obviously, a very serious concern. Please investigate this ASAP and respond to us both.

Jill O.

-----Original Message-----
From: a muscaria [mailto:amuscaria@usa.net]
Sent: Wednesday, April 04, 2001 4:12 PM
To: kitagami@sonic.net
Subject:


ufff...
you have a little problem with your web wwww.eastwindart.com
the cibershop ustorekeeper have a bug and permit read and execute
arbitrary commands. check:

(links removed)

bye.

amuscaria.

Click to Send Alert Message to the Administrator Click to edit this messageClick to EMail Click here to reply to this messageClick here to reply to this message with quotesClick to goto the Table of Contents

 Table of Contents

RE: Security hole?, Bill Weiner, Apr-05-01, (1)

 

 
Click here to goto Click here to goto the Lobby
Messages in this discussion
 
1 . "RE: Security hole?"
Posted by Bill Weiner on Apr-05-01 at 08:36 PM (EST)
It sounds like your client is using an older version of uStorekeeper and is experiencing a problem that was corrected back in version 1.61 and improved further in version 1.67... as listed on the uStorekeeper updates page at:

http://www.uburst.com/uStorekeeper/updates.html

So it is recommended that he updates to the latest version.

Remove this Message: Administrator and Moderator onlyClick to Send Alert Message to the Administrator Click to edit this messageClick here to reply to this messageClick here to reply to this message with quotesClick to goto the Table of Contents


Archive This Thread: Admin and Moderator OnlyRemove This Thread: Admin and Moderator Only
Click here to goto Click here to goto the Lobby

 

 

 

 

 

 

 

 

 

 

 

 
Questions or problems regarding this bulletin board should be directed to Webmaster
©1997-1999 by DCScripts. All rights reserved.