Full Disclosure mailing list archives

cpanel exploit

From: Todd Burroughs <todd () parsec net>
Date: Fri, 29 Sep 2006 06:56:20 -0400 (EDT)

Anyone have any info on this cpanel exploit.   I have a friend who found it
pretty open to full user level acess, but not root.

I'm curious to know what the hole is/was.

http://www.thewhir.com/marketwatch/092706_Web_Hosts_Hit_by_Hackers.cfm

http://news.netcraft.com/archives/2006/09/23/hostgator_cpanel_security_hole_exploited_in_mass_hack.html

Todd

---
The Internet has given us unprecedented opportunity to communicate and
share on a global scale without borders; fight to keep it that way.

Jesus died for your sins, make it worth his time.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

cpanel exploit Todd Burroughs (Sep 29)
- Re: cpanel exploit Rob Lemos (Sep 29)
- <Possible follow-ups>
- cpanel exploit cp haquer (Sep 30)