[url]
cPanel Multiple Local File Include Vulnerabilities
Bugtraq ID: 22915
Class: Input Validation Error
CVE:
Remote: Yes
Local: No
Published: Mar 11 2007 12:00AM
Updated: Mar 12 2007 04:54PM
Credit: cyb3rt & 020 are credited with the discovery of these vulnerabilities.
Vulnerable: cPanel cPanel 10.9 build 134
cPanel cPanel 10.9 build 125
cPanel cPanel 10.9
An arbitrary file inclusion vulnerability has been discovered in the Horde
webmail application. At present, we can confirm that this security
vulnerability in question affects Horde 3.1.6 and earlier. Based on
incomplete information at this time, we also believe this affects Horde
Groupware 1.0.4 and earlier as well (cPanel does not use Horde Groupware
at this time).
cPanel customers should update their cPanel and WHM servers immediately to
prevent any chance of compromise. The patch will be available in builds
11.18.2 and greater (or 11.19.2 and greater for EDGE systems). The updated
builds will be available immediately to all fast update servers. The
builds will be available to all other update servers within one hour of
this posting.
To check which version of cPanel and WHM is on your server, simply log
into WebHost Manager (WHM) and look in the top right corner, or execute
the following command from the command line as root:
/usr/local/cpanel/cpanel -V
You can upgrade your server by navigating to 'cPanel' -> 'Upgrade to
Latest Version' in WebHost Manager or by executing the following from the
command line as root:
/scripts/upcp
It is recommended that all use of Horde 3.1.6 and earlier be stopped (on
cPanel and non-cPanel systems alike) until Horde updates can be applied.
You can disable Horde on your cPanel system by unchecking the box next to
'Server Configuration' -> 'Tweak Settings' -> 'Mail' -> 'Horde Webmail'
within WHM, and saving the page with the new settings.
Just came through on the RSS feeds...
Quote:
Several potential security issues have been identified with cPanel software and Horde, a 3rd party bundled application. cPanel releases prior to 11.18.4 and 11.22.2 are susceptible to security issues, which range in severity from trivial to medium-critical. Along with the discovery of these potential issues, cPanel has released a new security tool to provide users with protection from XSRF attacks.
Quote:
All STABLE and RELEASE users are strongly urged to update to their respective 11.18.5 release. CURRENT and EDGE users should update to the latest 11.22.3 release. No releases are deemed susceptible to severe, critical or root access vulnerabilities.
[url]
I'm wondering if this is true:
[url]
Something like:
[url]
This security flaw came to light at the end of October and I didn't find it posted already so thought it worth mentioning having tested the helpdesks for some sites that we use and found them to be at risk.
D
etails and a demo exploit URL can be found at url]
For anyone who doesn't know, XSS flaws that allow execution of arbitrary javascript can be exploited easily and without user knowledge to obtain information such as login details or session IDs. This could happen in various ways, including visiting an unrelated page with a simple URL that redirects to the vulnerable URL and then back again. Tools such as NoScript for FireFox may help protect against this on the client side.
A user is able to use WebShell.cgi:
[url removed]
In order to run commands from the /scripts folder. This is especially dangerous as a user can give an account reseller priviledge with full root access.
Because webshell.cgi is running with the uid/gid of apache, it can access all files which can be access with apache. And guess what.... the /scripts folder is one of them.
Because it's a CGI script, it doesn't seem as though there is an easy way to block this.
I am building a website which require a data feed from a third party data provider. I have to fill out a 'questionair' when submitting my application and I'm not sure what to put for this questions.
Question: "Have you run a vulnerability assessment of network security? What is the current assessment rating?"
I Google'd for security rating but came up blank, without any useful result. Is there a level like 1-5 or something for network security rating? I m not sure what to put on here.
I'm not against getting a shared/virtual hosting account if the a host could provide me with these ratings.
We are currently running ColdFusion 9 on an Apache server. After running a Webinspect scan for one of our web applications, a weak cipher vulnerability was flagged as critical. Their recommended change to the httpd.conf file is listed below. We made the change and restarted our server but the same vulnerability came up again. How to eliminate the weak cipher vulnerability?
SSLCipherSuite ALL:!aNull:!ADH:!eNull:!LOW:!EXP:!NULL:RC4+RSA:+HIGH:+MEDIUMÂ
I am using plesk 11.0.9 and I want disable ssl anonymous authentication. A vulnerability exists in SSL communications when clients are allowed to connect using no authentication algorithm.
How I can disable anonymous authentication
Plesk apache + nginx running
Attacking multicore CPUs
[url]
[url]
"The Register reports that the world of current multi-core central processing units (CPUs) just entered is facing a serious threat. A security researcher at Cambridge disclosed a new class of vulnerabilities that takes advantage of concurrency to bypass security protections such as anti-virus software The attack is based on the assumption that the software that interacts with the kernel can be used without interference. The researcher, Robert Watson, showed that a careful written exploit can attack in the little timeframe when this happens, and literally change the "words" that they are exchanging. Even if some of these dark aspects of concurrency were already known, Watson proved that real attacks can be developed, and showed that developers have to fix their code. Fast..."
We have Plesk Panel 11.5 in Virtuozzo containers (Centos 6 x86_64) and we often provide to our customers the ssh access with chroot - /usr/local/ psa/ bin/chrootsh.All we know about Shellshock Vulnerability and we already installed all fixes to bash, but chrootsh-version is still vulnerable.Here are the results of BashCheck from [URL] ..... under chrooted user:
Vulnerable to CVE-2014-6271 (original shellshock)
Vulnerable to CVE-2014-7169 (taviso bug)
bashcheck: line 15: 19226 Segmentation fault bash -c "true $(printf '<<EOF %.0s' {1..79})" 2> /dev/null
Vulnerable to CVE-2014-7186 (redir_stack bug)
Test for CVE-2014-7187 not reliable without address sanitizer.Variable function parser still active, likely vulnerable to yet unknown parser bugs like CVE-2014-6277 (lcamtuf bug).Do you plan to release updates for chrootsh?
Code:
$ md5sum sim-current.tar.gz
6c1cece6f3af87598c4bdb09cabcb3cc sim-current.tar.gz
Line 25, file: sim-2.5-3/setup
Code:
TMPS="/tmp/sim_cj"
Line 399, file sim-2.5-3/install/sim
Code:
cat $TMPS >> /etc/crontab
If a local user creates a symlink to that file, then writes to the sim_cj file being linked to, as SIM is being installed, they can influence the contents of /etc/crontab.
Contacted the vendor via email on 04/17/07, email bounced.
Opened a ticket via their helpdesk ~5 days ago, no response.
Again, this is only an issue during the install, which is an extremely small window of time. Any bug that could lead to root access should be fixed, however.
got error with cpanel linces after force reboot
and when i try to set the licnse
i got this error
Code:
/usr/local/cpanel/cpkeyclt
Updating Internal cPanel Information.......Died at /usr/local/cpanel/Cpanel/CpKeyClt.pm line 132.
...propagated at /usr/local/cpanel/Cpanel/CpKeyClt.pm line 132.
.Done
I have 2 servers both have cpanel. I want to use 2nd server's mysql in my site which is on 1st server. I think thats not that hard. I don't wanna do clustering as this is temproary.
View 2 Replies View RelatedI am in the process of moving websites and emails to a new host. I am doing the transfer manually because we are gradually moving different part of the site at one time to allow developers to work on new parts.
I now want to migrate all of the email accounts off the old cpanel server to the new cpanel host. What files and settings do I need to move so settings are not lost, such as save mail and contacts?
I'm having big trouble trying to update an SSL certificate with cPanel.
I'm such a dummy that I've ended up buying 2 SSL certificates to see if that may fix it.
I now have 1 certificate for www.mydomainname.com and 1 for just mydomainname.com
I have logged into the account in cpanel and uploaded both certificates and when I view them in Security -> SSL/TLS manager -> Certificates They both display the correct host, correct issuer, and correct expire date.
But when I try to visit my site using https I get:
The certificate expired on 4/8/2008 7:59 PM.
(Error code: sec_error_unknown_issuer)
can anybody make me offers on a vps or rps with cpanel and whm?
View 4 Replies View RelatedI had a website created a few years ago. I am trying to update that website now. As ROOT, when I log into CPanel via WHM, I am unable to see a File Manager.
What would be my next steps?
Anyone here use PAX in their kernel builds? I've been trying to find a setup that works, but with no luck. stability wise.
I can run CPanel fine with just about any PAX setup, but after awhile with some settings the server eventually will get a load of over 250 and 1000 processes like it's not able to terminate them, or turn 4GB ram into like 3.2GB ram.
has anyone managed to setup cPanel /WHM with 1:1 NAT? I tried cPanel support with no luck, but I have 1:1 setup on all my IP address with no luck!
View 2 Replies View RelatedOkay does any one here know how to install svn with cpanel as all the ones i found in google it install svn but to anther apache in a diff folder like /etc/httpd/conf and not in /usr/local/apache/conf
using centos5 and installing using the yum command (i would like to use it from the site but do not know how to compile a install)
getting a VPS with either 384mb or 512mb and I would like to know what control panel uses the least amount of ram I have a choice of either cPanel or DA
View 12 Replies View RelatedI have a reseller account with site5. The last months the service has been horrible, sites down, dns down etc.. and the people there dont do a thing..
so i want to change to something else. I assume that VPS+whm+cpanel will give me something similar.
Which vps hosts are good? and which packages can you offer me? I'm paying about 19 usd a month now.
i am now unable to remove subdomains for some reason, even though it says that it is successful.
i added 2 parked domains that is to redirect to my main domain and it created the subdomain folders for me.
i went to try creating a subdomain for parked.co.cc and tried to redirect it to my main domain.
so example i created this subdomain: parked1.co.cc.maindomain.com
in the list of subdomains table, i have:
Subdomains: parked1
Root Domain: .co.cc.maindomain.com
but however it should be:
Subdomains: parked1.co.cc
Root Domain: .maindomain.com
how can i solve this? i just want to delete it now..
also for some reason my /cpanel and /webmail goes to my main hosting website url but not mine! so if i type www.maindomain.com/cpanel it goes to www.mainhosting.com:2093 etc!
Where do you guys currently get your external vps cpanel licenses? Cheapest ive been able to find is $15
Also what type of resources does cpanel require to run in the vps as far as ram used, etc..
My provider can provide me with cpanel vps so i have to get it externally, but 15 per is a bit much i think.
I now have tried a number of VPS accounts with CPanel.
I have taken the 256mb burstable to 512mb.
I am only running a simple php mysql online game (AATraders.com), yet i always max out at the memory and the server crashes.
Even when there is no one online I have issues.
I get the feeling that VPS with Cpanel and anything less than 1 gb ram is not going to work.
i can access all my domains and sites but i cant get to cpanel or whm.
View 4 Replies View RelatedI was moving some clients over from another server of mine (their accounts are ~10/15gb)
Typically I can use WHM to restore them; however, it seems as if there are problems restoring them with the new WHM because its so big.
I’ve been reading several posts about cpanel vs. directadmin and the difference in RAM usage.
I understand that cpanel is a resource hog that uses more RAM... so here is my noob question...
How and when does this have an impact on my site visitors?
Meaning...
1. Does this ONLY have an impact on ME while I’m using the control panel? Or..
2. Does this impact my visitors ONLY if I’m running/using my control panel at that moment? Or...
3? Does this have an impact on my visitors all the time regardless of my control panel usage at the moment?
I noticed there are a lot of different web tools in my cpanel. I want to add a feature to my Free Music Videos website so that visitors can post comments about the videos.
Is there a cpanel utility that will allow me to easily implement this type of functionality right on each video's page?