A worm that erases forums!

Lucid Lounge
1

pandasoftware.com/about/pres … 766&ver=21

Does this apply to ld4all?

2

Yes, I see version 2.0.10 here and we need 2.0.11 to be safe, so we should upgrade ASAP:
phpbb.com/phpBB/viewtopic.php?t=244451

3

This is aweful! :eek: good thing they have a patch for vulnerability! They say it attacks php of version less then 2.0.11 and here it reads 2.0.10!

4

It seems Dream Views has been a victim :sad:

5

i have already patched, but the version number wasn’t updated - i’ll do that today.

6

we’re safe :content:

7

Q scared me! She left the install and contrib directries there for a long time. :eek:

8

doh only as long as needed for the upgrade to complete :tongue:

and the contrib dir was never there… how did you check anyways?

9

A nice message appears “Please delete the install and contrib directry”.
It is a risk.

EDIT: Removed content of some description.

10

ah you must have seen that while the upgrade was taking place. Don’t worry it was deleted as soon as it was completed.
I have to run a upgrade file inside the install dir and that takes a while since the Database is big - so in that time you see that message.

11

We were already save, since in november 15 I did the quick-fix. However, this didn’t change the version number so it appeared we still where vulnerable.

Today I did the full upgrade, which also changes the version number. So now we are even safer :content:

Thanks everybody who has PM-ed me to warn me about this problem.

12

This security floor was only a minor one. However, a group called “howdark” were finding exploits and errors in PHPBB’s coding. They were releasing them publicly within a group. PHPBB didn’t like the idea of this.

A “howdark” member PMed the PHPBB admin and demanded that they be creditted for finding the exploits.

The admin didn’t like the way it was asked (it was quite demandanding and rude when I read it). So when he turned it down, and asked “howdark” to use the proper methods for reporting exploits, “howdark” got upset. They threatened to hack PHPBB and then released the exploit publicly to the world.

PHPBB was forced to create a patch quickly, because the minor exploit was now serious. Malicious hackers started using it to hack PHPBB forums.

A few weeks later "howdark"s domain got shut down.

13

yep, i lost most of my Dream Journal :sad:

14

Isn’t it funny how people get scared when their favourtie forum is in danger? I was half way to PM’ing Q before I read that post :tongue:.

15

<— he’s right here

16

:lol: christo … cute worm … but that joke might not be funny to some.