[ALUG] WordPress-Plug-in Slider Revolution

Andreas Tauscher ta at geuka.net
Thu Sep 11 20:56:45 EAT 2014


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

A critical bug allows attackers to access any file on the server
including the WordPress config files. A attacker can then taking over
the installation or in the worst case the entire server.

Many WP users are not aware they have Slider Revolution installed
because it is fixed part of many themes.

The bug is fixed since February but the developers did not publish
this really good so many theme developers don't know about this problem.

According to the security company Sucuri this bug is now widely used
since mid of August. [1]

The Word Press theme market place Envato has published a list with
potential affected themes. [2]

If you use one this themes update ASAP and if no update is available
contact the developer of your theme.

On Apache a Rewrite rule like this (untested by me) might protect you
until the update:

RewriteCond %{REQUEST_URI} (.*)action=revslider_show_image\&img=(.*)php$
RewriteRule  ^/(.*) %{HTTP_HOST}

It will redirect any access to a file not ending on gif png or jpg to
the start page

Andreas

[1]
http://blog.sucuri.net/2014/09/slider-revolution-plugin-critical-vulnerability-being-exploited.html
[2] http://marketblog.envato.com/general/affected-themes/

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.17 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/
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=vxLh
-----END PGP SIGNATURE-----


More information about the Linux mailing list