📜 ⬆️ ⬇️

For phpMyAdmin appeared exploit

I just logged into my mailbox and saw a letter from my provider where I rent a VPS that an exploit appeared for phpmyadmin. Here is the letter itself:

Good evening! According to verified information, there is an exploit for PhpMyAdmin that allows you to hack a server, both physical and virtual. It is already used for at least a couple of days and as a result of its actions there may be the presence of the /tmp/vm.c and / tmp / dd_ssh files, which are malicious software. Therefore, an urgent need to update PhpMyAdmin.
== Debian Upgrade Instructions ==
Here is a report on this issue from the Debian Security Team: www.debian.org/security/2010/dsa-2034 Before upgrading, check the version of Debian you are using: cat / etc / debian_version 5.0.5 read the instructions. If 4.0. *, Then it is worth resorting to the services of third-party administrators (or our support) so that they upgrade the system to Lenny. To update PhpMyAdmin to Debian 5 Lenny, do the following: apt-get update; apt-get upgrade -y phpmyadmin; If you have administrative skills, it is better to upgrade the whole system: apt-get upgrade -y; == Upgrade instructions on CentOS == yum upgrade -y phpmyadmin; Or, ideally, if you have administration skills, then update the entire system: yum update -y;

If there is any detailed information please send it to the LAN in the topic.


Source: https://habr.com/ru/post/101110/

All Articles