Technology news and Jobs
Information Technology News
Attacker adds backdoor to WordPress blog software
Information Technology News
Attacker adds backdoor to WordPress blog software | Attacker adds backdoor to WordPress blog software |
|
| by Stephen Withers | |
| Wednesday, 07 March 2007 | |
If you downloaded the WordPress blogging software last week, be sure to upgrade to version 2.1.2. An unknown attacker modified two of the files in version 2.1.1, opening up a back door allowing remote execution of code.Featured Whitepaper
5 Best Practices for Smartphone Support
"This is the kind of thing you pray never happens, but it did and now we’re dealing with it as best we can," founder Matt Mullenweg wrote in a statement posted on the WordPress web site. "Although not all downloads of 2.1.1 were affected, we’re declaring the entire version dangerous," he added. Measures are being taken to prevent a repeat of the incident. According to Symantec security response engineer Masaki Suenaga, "a user who visits a Web page on a server containing the hacked WordPress software is not at risk, so long as the server has not been compromised by other malicious threats downloaded by the back door."{moscomment} |
| < Next story in category | Previous story in the category > |
|---|





Tags




