Hacking with apache perl scripts in /tmp directory

I have found that someone is able to somehow use apache to upload perl scripts into the tmp directory and execute them. What they are running is some packet flood programs against other computers.

The files udp.pl srape.pl are owned by apache, the process is owned by apache, and the files are executable.

Obviously - I'm concerned and want to stop this. Anyone know what the vulnerability is and what I need to do to stop it?

 

 

 

 

Top