[joomla] 1.0.4 ships, closes CRITICAL REMOTE EXPLOIT
Mitch Pirtle
mitch.pirtle at gmail.com
Mon Nov 21 14:07:46 EST 2005
On 11/21/05, kirill at hostnetservices.com <kirill at hostnetservices.com> wrote:
>
> I download from a neighbor - my ISP is having issues.
*spacemonkey wipes forehead
I'm glad to hear we are not having problems with the forge as well LOL
> Is this the same issue
>
> http://isc.sans.org/diary.php?storyid=870
>
> And is this a valid manual patch:
Yup, that is the one. You can either patch or untar the new
distribution on top of your existing site (just remember to remove the
installation directory).
I would not just apply that one manual fix, as it really doesn't cover
the full scope of the problem.
-- Mitch
More information about the Joomla
mailing list