Vulnerability on Flashchat 4.4.0 Please upgrade!

For all Non-Joomla! security issues. ie 3pd Components etc.

Moderator: General Support Moderators

Forum rules
Locked
User avatar
aramil
Joomla! Enthusiast
Joomla! Enthusiast
Posts: 101
Joined: Thu Apr 20, 2006 9:04 pm

Vulnerability on Flashchat 4.4.0 Please upgrade!

Post by aramil » Sun Nov 26, 2006 7:44 pm

Hi all!

My joomla 1.0.11 site was defaced through Flashchat 4.4.0. Looking in my log files, it seem to be a script (from a turkish IP), it only modified my index.php (hopefully), through the file aedating4CMS.php. Please be carefull. If someone have more info about this problem please le tme know.

Thanks.  >:(

Some links:

http://www.milw0rm.com/exploits/2293
http://www.securityfocus.com/bid/19826/info
Last edited by aramil on Sun Nov 26, 2006 7:55 pm, edited 1 time in total.
All men die, not all men really live!
Top
User avatar
infograf768
Joomla! Master
Joomla! Master
Posts: 19133
Joined: Fri Aug 12, 2005 3:47 pm
Location: **Translation Matters**

Re: Vulnerability on Flashchat 4.4.0 Please upgrade!

Post by infograf768 » Mon Nov 27, 2006 5:19 am

FlashChat is a totally standalone application with no integration whatsoever with Joomla.
Joomla may only link to it as it may to anything on the Net.

To install any standalone script inside the Joomla folder (as advised by some for FlashCat) is fishing for problems.

Please make sure nothing else than your index.php has been cracked.
Jean-Marie Simonet / infograf
---------------------------------
ex-Joomla Translation Coordination Team • ex-Joomla! Production Working Group
Top
zorro128
Joomla! Enthusiast
Joomla! Enthusiast
Posts: 207
Joined: Tue Sep 27, 2005 7:27 am
Contact:
Contact zorro128

Re: Vulnerability on Flashchat 4.4.0 Please upgrade!

Post by zorro128 » Wed Dec 13, 2006 4:22 pm

I have been using older version of flashchat (I can not remember which one at the time, I have deleted it) and I have been hacked 7 days ago throught same file. Apparently hackers have used perl script located at albo.by.ru called lal.txt. In this way they have managed to input some scripts on my server once when started cause server overload so site is not accessible.

Perhapse someone of you know which files might me infected.

Just to mention I have been using mambo 4.5.4 SP3 but now I am upgrading to Joomla (clean installation).
Top
louisapatrice
Joomla! Fledgling
Joomla! Fledgling
Posts: 1
Joined: Fri May 09, 2008 2:51 pm

Re: Vulnerability on Flashchat 4.4.0 Please upgrade!

Post by louisapatrice » Fri May 09, 2008 2:56 pm

check out www.flashsyndrome.com/videochat.php. it might be what your looking for. good luck Louisa
Top
Locked

Return to “3rd Party/Non Joomla! Security Issues”