ruzivo nezve isina kurongeka (0-zuva) yakakosha vulnerability (CVE-2019-16759) mune inoringana injini yekugadzira maforamu ewebhu. , iyo inokutendera kuti uite kodhi pane sevha nekutumira yakanyatsogadzirirwa POST chikumbiro. Kushandiswa kwekushanda kunowanikwa kune dambudziko. vBulletin inoshandiswa nemapurojekiti mazhinji akavhurika, kusanganisira maforamu akavakirwa painjini iyi. , , ΠΈ .
Kusagadzikana kuripo mu "ajax/render/widget_php" mubato, iyo inobvumira kupokana kodhi kodhi kupfuudzwa ne "widgetConfig[code]" parameter (iyo yekutanga kodhi inongopfuura, hautombodi kutiza chero chinhu) . Kurwiswa kwacho hakudi kuvimbiswa kweforum. Dambudziko rakasimbiswa mune zvese zvinoburitswa zvezvino vBulletin 5.x bazi (rakagadzirwa kubva 2012), kusanganisira iyo ichangoburwa kuburitswa 5.5.4. Iyo yekuvandudza ine kugadzirisa haisati yagadzirwa.
Kuwedzera 1: Kweshanduro 5.5.2, 5.5.3 uye 5.5.4 zvigamba. Varidzi vekare 5.x inoburitswa vanorairwa kuti vatange vagadziridza masisitimu avo kune ichangoburwa shanduro kuti vabvise kusagadzikana, asi sechigadziriso. kudaidza βeval($code)β mu evalCode function code kubva pafaira inosanganisira/vb5/frontend/controller/bbcode.php.
Addendum 2: Kusagadzikana kwatova kushanda zvekurwisa, ΠΈ . Tsanangudzo dzekurwiswa dzinogona kucherechedzwa mu http server logs nekuvapo kwezvikumbiro zvemutsara "ajax/render/widget_php".
Wedzero 3: mitsva yekushandiswa kwedambudziko ririkukurukurwa mukurwiswa kwekare; sezviri pachena, kusagadzikana kwakatoshandiswa kweanenge makore matatu. Uyezve, script inogona kushandiswa kuita misa otomatiki kurwiswa kutsvaga masisitimu asina njodzi kuburikidza neiyo Shodan sevhisi.
Source: opennet.ru