A hole that alows an attacker to remotely execute arbitrarly code, by sending a private message (msg/query) has been found in Peace & Protection versions 4.X. This fix closes this hole.
Note that this fix is already included in the latest PnP.
Download the following file, and replace the file of the same name (“last.mrc”) in your PnP \script\ directory.
last.mrc (48KB)
Thanks to Paul, an IRC-Operator on Quakenet.
For any enquiries, or for further information or help, click here to contact me. Please state clearly the reason for the enquiry.
Page Layout, Pictures, Graphics and all content © Copyright
2005 Ned Martin unless otherwise noted.
You may also want to check out my iLog Log Viewing script.
For further information about Peace and Protection, visit http://www.kristshell.net/pnp/.
Warning: Your browser doesn't support cascading style sheets. Consider upgrading your browser (free).
oOo
9,486 visitors
Last updated 14 September 2004
valid css | main site | valid html