Re: [PLUG] godaddy, imunify, gimp

Martin Cracauer via plug on 23 Nov 2021 08:10:34 -0800

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] godaddy, imunify, gimp

From: Martin Cracauer via plug <plug@lists.phillylinux.org>
To: jeffv <jeffv@op.net>
Subject: Re: [PLUG] godaddy, imunify, gimp
Date: Tue, 23 Nov 2021 11:10:27 -0500
Cc: Philadelphia Linux User's Group Discussion List <plug@lists.phillylinux.org>
Reply-to: Martin Cracauer <cracauer@cons.org>
Sender: "plug" <plug-bounces@lists.phillylinux.org>

jeffv via plug wrote on Tue, Nov 23, 2021 at 10:55:26AM -0500: 
> 
> Imunify360 Bug Leaves Linux Web Servers Open to Code Execution, Takeover
> 
> https://threatpost.com/linux-web-servers-imunify360-bug/176508/
>
> A high-severity security vulnerability in CloudLinux???s Imunify360 
> cybersecurity platform could lead to arbitrary code execution and 
> web-server takeover, according to researchers.

Hmmm, okay.  "Security software" usually increases the attack surface
and can be questioned just based on that.

But those folks implemented it in PHP of all things?

Martin
-- 
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
Martin Cracauer <cracauer@cons.org>   http://www.cons.org/cracauer/
___________________________________________________________________________
Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug

References:
- [PLUG] godaddy, imunify, gimp
  - From: jeffv via plug <plug@lists.phillylinux.org>

Prev by Date: [PLUG] godaddy, imunify, gimp
Next by Date: [PLUG] Sys76
Previous by thread: [PLUG] godaddy, imunify, gimp
Next by thread: [PLUG] Sys76
Index(es):
- Date
- Thread