IPB

Welcome Guest ( Log In | Register )

> UPDATE YOUR SERVERS!, RTCWET
Ragnar_40k
post Aug 1 2006, 01:17 AM
Post #1


Group Icon General of the Army

Group: RtCW/ET-Division

Joined: 3-December 04
From: Berlin, Germany
Member No.: 1791
UPDATE YOUR SERVERS! File exploit is being actively abused.

QUOTE(reyalP)
We have had several reports that people are actively exploiting the download vulnerability that exists in et prior to 2.60b and ETTV prior to beta-10. This exploit allows that to download your server.cfg files (and thus obtain your passwords) and depending on your server configuration, may allow them to download other sensitive files outside of the et directory.

Anyone running a server with downloads enabled should update to 2.60b or the latest ettv.

you DO NOT have to update to the new etpro, or require the clients to update. Just update the server.

The bug: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-2082
ET 2.60b binaries (all platforms): ftp://ftp.idsoftware.com/idstuff/et/ET-2.60b.zip


--------------------


Silver horses ran down moonbeams in your dark eyes.
Go to the top of the page
 
+Quote Post

Posts in this topic
- Ragnar_40k   UPDATE YOUR SERVERS!   Aug 1 2006, 01:17 AM
- - GRU|EXPLODE   we also changed the passys in ours and saved them ...   Sep 13 2006, 06:02 AM
- - WINY(TR)   All servers use 2.60 or 2.60b but some servers sti...   Apr 30 2008, 12:25 PM

« Next Oldest · NEWS - RtCW / ET - ENGLISH · Next Newest »
 

Reply to this topicStart new topic
1 User(s) are reading this topic (1 Guests and 0 Anonymous Users)
0 Members:

 

Display Mode: Switch to: Standard · Switch to: Linear+ · Outline

Track this topic · Email this topic · Print this topic · Subscribe to this forum

RSS Lo-Fi Version Time is now: 1st August 2024 - 06:51 AM
Powered By IP.Board © 2024  IPS, Inc.
Licensed to: www.splatterladder.com