ulwazi malunga nokungalungiswanga (0-imini) ubungozi obubalulekileyo (CVE-2019-16759) kwi-injini yobunini bokwenza iiforum zewebhu , ekuvumela ukuba wenze ikhowudi kumncedisi ngokuthumela isicelo esenziwe ngokukodwa se-POST. I-exploit esebenzayo ikhona kwingxaki. I-vBulletin isetyenziswa ziiprojekthi ezininzi ezivulekileyo, kubandakanya iiforamu ezisekelwe kule injini. , , ΠΈ .
Ukuba sesichengeni kukho kwi βajax/render/widget_phpβ isibambi, esivumela ikhowudi yeqokobhe engavumelekanga ukuba igqithwe kwi βwidgetConfig[code]β iparameter (ikhowudi yokuphehlelelwa igqithiswa ngokulula, awufuni nokubaleka nantoni na) . Uhlaselo alufuni ukuqinisekiswa kweforamu. Ingxaki iqinisekisiwe kuzo zonke izikhupho ze-vBulletin 5.x yesebe yangoku (eyaphuhliswa ukususela ngo-2012), kubandakanywa nokukhululwa kwangoku 5.5.4. Uhlaziyo olunokulungiswa akukalungiswa.
Ukongeza 1: Kwiinguqulelo 5.5.2, 5.5.3 kunye 5.5.4 amabala. Abanini bokukhutshwa kwe-5.x endala bayacetyiswa ukuba baqale bahlaziye iinkqubo zabo kwiinguqulelo zamva nje ezixhaswayo ukuphelisa ubuthathaka, kodwa njengendlela yokusebenza. ukubiza "eval($code)" kwikhowudi yokusebenza kwe-evalCode kwifayile ibandakanya/vb5/frontend/controller/bbcode.php.
IsiHlomelo 2: Ubuthathaka sele busebenza kuhlaselo, ΠΈ . Umkhondo wohlaselo unokubonwa kwiilogi zeseva ye-http ngobukho bezicelo zomgca "ajax/render/widget_php".
IsiHlomelo 3: umkhondo wokusetyenziswa kwengxaki ekuxoxwa ngayo kuhlaselo oludala; ngokucacileyo, ubuthathaka sele busetyenziswe malunga neminyaka emithathu. Ngaphandle koko, iskripthi esingasetyenziselwa ukwenza uhlaselo oluzenzekelayo olufuna ukukhangela iinkqubo ezisengozini ngenkonzo yeShodan.
umthombo: opennet.ru