FutureQuest, Inc. FutureQuest, Inc. FutureQuest, Inc.

FutureQuest, Inc.
Go Back   FutureQuest Community > FutureQuest Site Owners (All may read - Only Site Owners May Respond) > Security Alerts
User Name
Password  Lost PW

 
Thread Tools Search this Thread Display Modes
Old 11-18-2009, 12:05 PM   Postid: 176537
 Bob
Service Rep
 
Bob's Avatar
 
Join Date: Dec 1999
Location: Jacksonville, Fl
Posts: 5,055
[FQuest Alert] osCommerce Security Vulnerability

It has come to our attention that all versions of osCommerce appear to be
vulnerable to exploitation if certain steps are not taken by site owners.

Details of the exploit(s) and steps you can take to protect your osCommerce
installation can be viewed in the below osCommerce Forums posts:
http://forums.oscommerce.com/topic/3...n-town-beware/
http://forums.oscommerce.com/topic/3...ure-your-site/

This exploit allows the attacker to gain full access to your package and all
data within, as well as use it for other potential malicious purposes such as
sending spam mailings. Active exploits are taking place.

We are scanning the servers for osCommerce installations and we will
be notifying site owners, on a domain by domain basis, of this information
via email.

For those with an osCommerce installation requiring assistance with modifying
their scripts we recommend visiting the osCommerce Forums.
http://forums.oscommerce.com/index

Also note that all sites with third party scripts installed should take proactive
steps to ensure they maintain all patches and upgrades for the scripts
installed within an account and monitoring security forums or subscribing to
security mailing lists for all installed scripts is strongly recommended.

The FutureQuest Team
Bob is offline  


Currently Active Users Viewing This Thread: 1 (0 members and 1 visitors)
 
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump


All times are GMT -4. The time now is 12:44 PM.


Running on vBulletin®
Copyright © 2000 - 2014, Jelsoft Enterprises Ltd.
Hosted & Administrated by FutureQuest, Inc.
Images & content copyright © 1998-2014 FutureQuest, Inc.
FutureQuest, Inc.