There is fresh publicity about the Mare.D Linux worm and Mambo. The thing that is new here is the Mare.D worm. The link with Mambo is that the worm is seeking copies of Mambo that are not secured against an existing exploit, and using the exploit to install itself.

The vulnerability in Mambo is the one that was fully described on 21 November 2005, when a patch was provided against such exploits. The patch can be applied to any version of Mambo, or any PHP program.

Versions 4.5.3 and 4.5.3h of Mambo already contain the code that protects against this exploit. Provided you are running one of these versions, or have applied the recommended patch to your version of Mambo, you are not vulnerable to the recently reported activities of Mare.D.

Only registered users can write comments.
Please login or register.

Powered by AkoComment 2.0! ������Mambo�й�