cpanel servers vulnerable by default

not a cpanel vulnerabilty, but cpanel has Melange chat server actived by default

try to login (telnet?) to port 6666 of your server

do you get >> Melange Chat Server (Version 1.10), Apr-25-1999?

this program has a bug

i didn't investigate it very much, but it's possible to change the EIP (pointer to program code) to somewhere else, maybe getting to run some program the ab(user) wants

as far as i went, that's a not severe vulnerability, since this program is runned by 'nobody' user
not a big deal, but yet a vuln cpanel servers vulnerable by default

http://www.securityfocus.com/bid/6477/discussion/

no patch is available yet, so if you think you can be affected by that, disable connections to port 6666 to your server

 

 

 

 

Top