The Latest in IT Security

Unpatched PHP Installations Enable Cybercriminals to Exploit Old Vulnerability

21
Mar
2014

CVE-2012-1823 is a PHP arbitrary command execution vulnerability uncovered back in May 2012. Despite being discovered and patched a long time ago, cybercriminals have been successfully using it in their operations over the past months.

According to Imperva, an exploit for this vulnerability was made public in October 2013. Variations of the exploit have been used to attack web servers ever since.

The security company has identified as many as 30,000 attack campaigns …

Related posts:
  1. November Patch Tuesday Addresses New IE Zero-Day Exploit, But TIFF Vulnerability Still Unpatched
  2. Hackers Actively Exploiting Old PHP Vulnerability in Server Attacks: Imperva
  3. Cybercriminals Exploit TP-Link Router CSRF Vulnerabilities to Hijack DNS Settings
  4. Security Flaw in Spotify for Android May Enable Phishing
  5. New spear of Black Hole exploit kit targets Java Vulnerability CVE-2012-1723

Tags:  
Written by Softpedia
0 Comments
Comments are closed.

Categories

SUNDAY, FEBRUARY 23, 2025
WHITE PAPERS

Mission-Critical Broadband – Why Governments Should Partner with Commercial Operators:
Many governments embrace mobile network operator (MNO) networks as ...

ARA at Scale: How to Choose a Solution That Grows With Your Needs:
Application release automation (ARA) tools enable best practices in...

The Multi-Model Database:
Part of the “new normal” where data and cloud applications are ...

Featured

Archives

Latest Comments