Comment 13 for bug 316550
Revision history for this message
| Tillmann (t-st-t-st) wrote Re: CVE-2008-5620- Roundcube vulnerable and actively exploited | #13 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
35a32c5
(Get the code!)
Hi,
my machine has been hacked using this exploit as well. It is incomprehensible to me how a well-known exploit that was reported as "exploited widely" over one month ago still isn't fixed in Ubuntu.
Some more info for the (probably many) others involved:
Typically, the attacker downloads a tool such as a connect back backdoor using this exploit. E.g. php-reverse-shell or Data Cha0s Connect Back Backdoor. The machines are then used as botnet zombies, using a bot like emech.
Some more info about the attack can be found in /var/log/
bye,
Till