FreeLists / dokuwiki / [dokuwiki] Re: attempt to use possible vulnerability of dokuwiki

[dokuwiki] || [Date Prev] [02-2008 Date Index] [Date Next] || [Thread Prev] [02-2008 Thread Index] [Thread Next]

[dokuwiki] Re: attempt to use possible vulnerability of dokuwiki

From: Jonathan Dill <jonathan@xxxxxxxxx>
To: Todd Augsburger <todd@xxxxxxxxxxxxxxxx>
Date: Mon, 11 Feb 2008 16:16:24 -0500

Todd Augsburger wrote:

Interesting stuff! (Although only marginally about DokuWiki)
Googling "namogofer" or its md5('f') response gets hundreds of hits, so Iassume there are a significant number of compromised hosts. Any idea whatthe target app was?

Certain versions of Word Press seem to be a popular target, but it lookslike it could potentially affect any PHP script without adequate inputvalidation on a server with url_fopen enabled. Someone also pointed meto this page, which has some fixes that you can use on shared hostingwhere you don't have access to the system php.ini.


http://www.embedded.ch/http.htm

Jonathan
--
DokuWiki mailing list - more info at
http://wiki.splitbrain.org/wiki:mailinglist

Follow-Ups:
- [dokuwiki] Re: attempt to use possible vulnerability of dokuwiki
  - From: Jonathan Dill

References:
- [dokuwiki] attempt to use possible vulnerability of dokuwiki
  - From: gstat1
- [dokuwiki] Re: attempt to use possible vulnerability of dokuwiki
  - From: Jonathan Dill
- [dokuwiki] Re: attempt to use possible vulnerability of dokuwiki
  - From: Jonathan Dill
- [dokuwiki] Re: attempt to use possible vulnerability of dokuwiki
  - From: Jonathan Dill
- [dokuwiki] Re: attempt to use possible vulnerability of dokuwiki
  - From: Jonathan Dill
- [dokuwiki] Re: attempt to use possible vulnerability of dokuwiki
  - From: Jonathan Dill
- [dokuwiki] Re: attempt to use possible vulnerability of dokuwiki
  - From: Todd Augsburger