Webhost hit by cPanel exploit
 

The popular linux [server] control software cPanel got hacked the other day ;

http://www.seopedia.org/internet-mar...-in-mass-hack/

Re: Webhost hit by cPanel exploit
 

Thanx for the heads up mate. Just wonder if I should warn my hosting co...

Shame about cPanel though, I really like it.

Re: Webhost hit by cPanel exploit
 

Unfortunately this is alot worse than made out in Paul's post.

None of I-Webs servers were affected in this bug, we secured the servers as soon as the patch was released. Unfortunately a number of other hosts were victims even before the bug was widely known.

What did the bug do : Well it allowed someone to use the server as their own, allowing them to input code into other peoples files.

Then what? : If a user then visited your site, due to an exploit in IE too, a keylogger was installed into there system.

A key logger? : Yes, it basically logs every key you press and sends it to a remote server. This includes capturing login details for e-mail, online banking etc.

How do i know if i have been affected? : Apparently this site should crash if you are affected http://www.isotf.org/zert/testvml.htm

If that site crashes, then it is highly likely you are affected by this exploit, that was delivered using an exploit in cPanel.


Again, i would just like to clarify that none of the I-Web servers fell victim to this bug.

Re: Webhost hit by cPanel exploit
 

When I try and access that site my AV kicks in with this, does this mean I'm infected or what does it mean ??

Re: Webhost hit by cPanel exploit
 

Might want to get it checked
http://vil.nai.com/vil/content/v_140629.htm

Re: Webhost hit by cPanel exploit
 

I can't find any trace of it..yet, still searching :tu: of all the days to log onto my online banking :(

Re: Webhost hit by cPanel exploit
 

Not affected by it.
It's bad to see things such as cPanel, with big jobs to do getting compromised. But it's bound to happen at some point. Let's hope all damage done ca be reverted.

Re: Webhost hit by cPanel exploit
 

Possibly just a warning that it was detected as you logged into Cpanel Bop, might want to get your host to check the server just in case.

Re: Webhost hit by cPanel exploit
 

:blush: :blush: :blush: :erm: I take it people are only at risk if they have a site running cpanel then , oops: oops: oops: ( no site )I thought that link was a general 'log on and see' type thing :D :dozey: :dunce: :dunce:

Sorry, but why then would my AV flash up that warning ???

Re: Webhost hit by cPanel exploit
 

Oh blummin great, you have just answered a lot of questions :(

Re: Webhost hit by cPanel exploit
 

Is there a fix for Cpanel then?

Re: Webhost hit by cPanel exploit
 

KP said in his post that I-web have patched their servers already so a patch must be out there for the problem.

Re: Webhost hit by cPanel exploit
 

Who did ? me ? you fell for the same thing ???? I'm not alone in the world then :D

Re: Webhost hit by cPanel exploit
 

Our servers blocked several ip's at the time this happened, and the site posted here crashes :(

Re: Webhost hit by cPanel exploit
 

I see :(

Re: Webhost hit by cPanel exploit
 

I thought the latest patch from MS has sorted that out. :confused:

http://secunia.com/advisories/21989/

Re: Webhost hit by cPanel exploit
 

It did, i'm thinking that was before the patch was released 2 days ago was it?

Re: Webhost hit by cPanel exploit
 

My Nod32 came up with the same thing too.
Anyone know if we are at risk or why it came up ?

Re: Webhost hit by cPanel exploit
 

Dunno lol

I just used the link supplied by KP and got this.....

Which does point to that exploit in my previous post. No big deal though. :tu:

Re: Webhost hit by cPanel exploit
 

That site tests if your IE is vulnerable to the VML security hole.

Mine was, so I installed the MS patch available here ;

http://www.microsoft.com/technet/sec.../MS06-055.mspx

Now IE passes the test ok.

Re: Webhost hit by cPanel exploit
 

So is that why Nod32 thinks it is a virus then when I click on that link ?
I never use IE, just Firefox.

Re: Webhost hit by cPanel exploit
 

OK well I'll run a CPanel update and see what happens.

---------- Post added at 20:01 ---------- Previous post was at 20:00 ----------

Yeah there was a news item at the top of my WHM Admin Page telling me there was an update to fix the vulnerability. Running the update now

Re: Webhost hit by cPanel exploit
 

Cool. Thought you may have missed KPs post ;)

Re: Webhost hit by cPanel exploit
 

All fixed, i feel better now :D

Re: Webhost hit by cPanel exploit
 

What, that site is knowingly hosting a trojan and asking people to click the link?!? How irresponsible of them.

Re: Webhost hit by cPanel exploit
 

No, they are knowingly osting the exploit, then seeing if you're immune to it or not. No malicious code. Just the exploit. If you get my drift.

Re: Webhost hit by cPanel exploit
 

My IE crashed when i went to http://www.isotf.org/zert/testvml.htm. Installing all the patches from MS update sorted that though. Glad i only use Opera to log into sites!