PEAK XOOPS - Protector is ready for SA20176 :-)

Protector is ready for SA20176 :-)

Date 2006-05-23 03:18:38 | Category: XOOPS

Secunia Advisory:
http://secunia.com/advisories/20176/

Don't worry about it if you've installed Protector.
It is just a well-known attack, and Protector shuts out and logs it.
(Both Null-byte and Injection will be reported if such an attack comes)

If you don't/won't install Protector, check register_global is disabled, again.
(Though I can't imagine public XOOPS sites without Protector

)

You should know the worst vulnerability is not SA20176 itself but the setting of register_globals=on.

You can read more news at PEAK XOOPS.
http://xoops.peak.ne.jp

The URL for this story is:
http://xoops.peak.ne.jp/md/news/index.php?page=article&storyid=110