From jafo at tummy.com  Sun Dec 26 16:05:42 2004
From: jafo at tummy.com (Sean Reifschneider)
Date: Sun Dec 26 16:06:42 2004
Subject: [Securityalerts] Security announcement: phpBB vulnerability.
Message-ID: <20041226230542.GA309@tummy.com>

As reported recently in the following bugtraq message, a worm has been
exploiting phpBB sites:

   http://marc.theaimsgroup.com/?l=bugtraq&m=110365752909029&w=2

If you are running phpBB, you should definitely get it updated.  While the
worm above is harmless enough, we've seen other attacks using the same
attack vector to gain system access.

All our managed hosts have already been contacted about this and had the
updates applied.  If you need help identifying if you have phpBB installed
or getting the update applied, feel free to contact us.

Thanks,
Sean
-- 
 Why isn't phonetic spelled the way it sounds?
Sean Reifschneider, Member of Technical Staff <jafo@tummy.com>
tummy.com, ltd. - Linux Consulting since 1995.  Qmail, Python, SysAdmin
      Back off man. I'm a scientist.   http://HackingSociety.org/