Potential Exploit
#1
I run a MyBB forum and I just saw today that there is a registered user by the name of

'.system(getenv(HTTP_J)).'

I'm wondering a few things.

Is there a known exploit involving this?
I was running 1.1.2 at the time. Just up'd to 1.1.3. Because I was running the old version, was the exploit successful? I can't tell if anything is wrong.
Has this been fixed?
#2
read this thread ok
http://community.mybboard.net/showthread.php?tid=9699
#3
you can also look at http://community.mybboard.net/showthread.php?tid=9677
#4
Alright, so 1.1.3 is officially safe from the exploit. Some people have also said 1.1.2 was safe as well...is this pretty much the general sentiment?

Forgive the paranoia, but I used to run an Invision Board and it was completely compromised twice.
#5
1.1.2 is vulnerable from this exploit. 1.1.3 fixes this bug.
Dennis Tsang
Former MyBB Team Member
Web: http://dennistt.net
#6
i've had two users sign up with the .system username, and absolutely nothing happened. (and I'm still on 1.1.2).

So yes, you're safe from that idiot. (And hopefully the next idoit... and the next...._
#7
No you're not. As I said previously, this exploit is confirmed in 1.1.2, and it is advised that all MyBB users upgrade to 1.1.3 to patch this security vulnerability.

If you refuse to believe me, then that is your decision, but please do not spread false truths that may hamper the security of another's board.
Dennis Tsang
Former MyBB Team Member
Web: http://dennistt.net
#8
It's what I said: two users signed up with .system. Nothing happened.

But I just spent the whole effen 30 seconds it took to upgrade.
#9
silverwing Wrote:It's what I said: two users signed up with .system. Nothing happened.

But I just spent the whole effen 30 seconds it took to upgrade.

Nothing happened to you, but the malacious user will be able to execute arbitrary PHP code, which you will not notice at all.
Dennis Tsang
Former MyBB Team Member
Web: http://dennistt.net
#10
you're right, DennisTT. my appologies. I shouldn't have posted that, not knowing what was going on behind the scenes.

And upgrading the three files in the 1.1.3 changed files download took only 30 seconds. (Best upgrade of any cms i've used!)

silverwing


Forum Jump:


Users browsing this thread: 1 Guest(s)