If you are running phpAdsNew, please check for updated versions that fix the adxmlrpc.php vulnerability...

This script has been exploited twice so far today, and it appears that automated scanners are leeching off of Google to hunt down vulnerable sites... It is only a matter of time before your site is hit, causing unavoidable service interruptions...

http://www.securityfocus.com/archive/1/408423/30/120/threaded

--
Terra
sysAdmin
FutureQuest

I have just finished sweeping all the servers for vulnerable 'adxmlrpc.php' files... Any that were found, the parent directory has been disabled so that Apache cannot gain access mitigating the attack...

If you find your phpAdsNew not functional, check the directory permissions and if the 'other' directory mode is set to '---', then it has been disabled...

Once you have updated the software, you can turn it back on by either using the CNC FileManager to set the 'other' mode bits, or from the command line via:
$ chmod o+rw /big/dom/xdom/www/phpAdsNew_directory

Of course, the preference will be to delete the old phpAdsNew directory and do a fresh install with latest version...

--
Terra
sysAdmin
FutureQuest