If you use Roundcube you may of been exploited!

malef!c

malef!c

malef!c

Associate
Joined
27 Jun 2006
Posts
1,473
....appears that a lot of servers running older versions of Roundcube have been exploited today.

There is an vulnerability in one of the files - so if you use Roundcube update it immediately to the latest stable version.

If you don't use it and its just been installed as part of an install (especially relevant if you are a Directadmin user as Roundcube is installed with it), delete it or chmod the directory / files to 000

A quick check to see if you have been exploited is to check the /tmp directory.
If there are any files called wcube then you have been done over, as the expression goes.

Delete the files and you should be okay as long as you delete / upgrade Roundcube.

I found out the hard way on my DA VPS!
 
Cheers for the info. I'll have to check mine :( It's installed but I never actually use it, might as well get rid of it I guess.
 
Cheers :).

I switched to the SVN release the other day so it's a simple Right click > SVN Update for me :D,
 
Thanks a lot for the heads up. I use it on on of my client's sites to provide webmail and they are running an old version. Fortunately they haven't been targeted (yet) but I am updating now.
 
have what?

If that is one of the high and mighty grammar nazi swipes please just write it in your special pad that you no doubt keep a list of all the lovely grammar mistakes you spot to make your self seem ever so more educated than us mere grammar retards.

I for one am not that interested - I got a point across to help people not get exploited by a worm, I was not writing the latest chapter in a grammar nazis musings.

Thank you.
 
*sigh*
malef!c said:
Have what?

If that is one of the high and mighty grammar Nazi swipes please just write it in your special pad, in which you no doubt keep a list of all the lovely grammar mistakes you spot, just to make your self seem ever so more educated than us mere grammar retards.

I for one am not that interested - I got a point across to help people not get exploited by a worm, I was not writing the latest chapter in a grammar nazi's musings.

Thank you.
Click to expand...

Welcome.
 
Dj_Jestar said:
*sigh*


Welcome.
Click to expand...

Inconsistent capitalisation of the word Nazi
emot-eng101.gif
 
so if i type all in lower case insead of capitalising the i for me will you correct that as well infact if i dont do any punctuation i guess your little important notepad of oo look who i corrected today will fill up rather fast i used to have u inglish teecher like you he had no life either and would pik up on the smallist things to make himself feel important instead of understanding what i am trying to put across i hope your ccorreksions make you feel happy and your friday nite is complete and you are content i just hope that one day i am perfickt like you in every way apart from i would like to have people like me not think i am a jumped up little arsewipe although if this makes you feel important you must be just below king level about nah
 
Dj_Jestar said:
I'll make an entry in my notebook, ta. :)
Click to expand...

No problem ;). One can be excused from making a small grammatical mistake on an online forum!

What job do you do? Part of my day job involves proof ready copy so sometimes I get too used to being anal and nit-picky :/.

Sorry to hijack the thread by the way. On a plus note, the top-ups should help get it read by more people!
 
rghjones said:
No problem ;). One can be excused from making a small grammatical mistake on an online forum!

What job do you do? Part of my day job involves proof ready copy so sometimes I get too used to being anal and nit-picky :/.

Sorry to hijack the thread by the way. On a plus note, the top-ups should help get it read by more people!
Click to expand...
:p

Software Developer is my job title.
 
You must log in or register to reply here.
Back
Top Bottom