Page 12 of 55
Re: Got 10 VestaCP servers exploited
Posted: Sun Apr 08, 2018 11:07 am
by AKr0nizz
sandy wrote: Sun Apr 08, 2018 11:03 am
AKr0nizz wrote: Sun Apr 08, 2018 10:58 am
MAN5 wrote: Sun Apr 08, 2018 10:51 am
Hi, we should be patience with Vesta team, even we got calls from our frustrated clients.
The affected servers are running with vesta > doesnt meant vesta had this bug. Let them to find the issue 1st.
More likely its problem with RoundCube. 23 hours ago critical exploit for it was published. I realize that VastaCP is the awesome product as for freeware.
@sandy
Even WordPress has more security breaches, if we compare it to Vesta.
You can find bugs and exploits in every software btw. Just bugs in Control Panels are more critical in comparison to MS Word for example.
only if you use vulnerable plugins/theme under wp and vesta doesn't use plugins/module though
It uses modules, such a nginx, apache, roundcube, spamassasin and so on.
Re: Got 10 VestaCP servers exploited
Posted: Sun Apr 08, 2018 11:09 am
by sandy
can you install other things like wp? those are lamp/lemp stack not module
Re: Got 10 VestaCP servers exploited
Posted: Sun Apr 08, 2018 11:11 am
by imperio
More likely its problem with RoundCube. 23 hours ago critical exploit for it was published
Please, write more about that
Re: Got 10 VestaCP servers exploited
Posted: Sun Apr 08, 2018 11:14 am
by lukapaunovic
Re: Got 10 VestaCP servers exploited
Posted: Sun Apr 08, 2018 11:15 am
by sandy
negative not related with current exploit
Re: Got 10 VestaCP servers exploited
Posted: Sun Apr 08, 2018 11:19 am
by AKr0nizz
imperio wrote: Sun Apr 08, 2018 11:11 am
More likely its problem with RoundCube. 23 hours ago critical exploit for it was published
Please, write more about that
https://github.com/roundcube/roundcubemail/issues/6238
Re: Got 10 VestaCP servers exploited
Posted: Sun Apr 08, 2018 11:21 am
by sandy
exploit resulting :
(will return a File not Found template, nonetheless code'll be executed).
again not related with current ddos hack
Re: Got 10 VestaCP servers exploited
Posted: Sun Apr 08, 2018 11:25 am
by AKr0nizz
sandy wrote: Sun Apr 08, 2018 11:21 am
exploit resulting :
(will return a File not Found template, nonetheless code'll be executed).
again not related with current ddos hack
Oh, my god. Someone gained access to root shell. Now Vesta servers not only ddos, thay also spam, send malware and so on.
Re: Got 10 VestaCP servers exploited
Posted: Sun Apr 08, 2018 11:25 am
by lukapaunovic
sandy can you check
[email protected]
i'm waiting for more than 20 minutes.
I sent you access to hacked server.
serghey is not online so he can't look into it.
can anyone from vesta look into it. the disk is mounted it's in rescue mode.
Re: Got 10 VestaCP servers exploited
Posted: Sun Apr 08, 2018 11:26 am
by lukapaunovic
sandy can you check
[email protected]
i'm waiting for more than 20 minutes.
I sent you access to hacked server.
serghey is not online so he can't look into it.
can anyone from vesta look into it. the disk is mounted it's in rescue mode.