View Issue Details
|ID||Project||Category||View Status||Date Submitted||Last Update|
|0009858||mantisbt||security||public||2008-11-19 11:03||2009-06-26 12:06|
|Summary||0009858: Security problem - XSS attac possible in Mantis 1.1.2|
Because I got still no answer in the forum, i write in my problem here again.
My provider informed me about the attack and that the file manage_proj_page.php was the attack-point.
In the result my crontab was overwrite whith this entry:
Also the directory mc-root was created in the mantis directory with any files (some looks like system files - i'm not a linux-user) and a virus named: Linux Procfake.
I have Mantis now completely closed.
Here my Log:
184.108.40.206 - - [15/Nov/2008:08:36:44 +0100] "GET /mantis/manage_proj_page.php HTTP/1.0" 200 0 "-" "-"
|Tags||No tags attached.|
|2008-11-19 11:03||cooper64||New Issue|
|2008-11-19 11:11||thraxisp||Note Added: 0019943|
|2008-11-19 11:11||thraxisp||Relationship added||duplicate of 0009704|
|2008-11-19 11:11||thraxisp||Status||new => resolved|
|2008-11-19 11:11||thraxisp||Resolution||open => fixed|
|2008-11-19 11:11||thraxisp||Assigned To||=> thraxisp|
|2009-06-26 12:06||vboctor||Status||resolved => closed|