Thread: PSA-Log4j vulnerabilities

Results 1 to 4 of 4
  1. #1 PSA-Log4j vulnerabilities 
    Chemist

    Advocatus's Avatar
    Join Date
    Dec 2009
    Posts
    2,622
    Thanks given
    201
    Thanks received
    813
    Rep Power
    1462
    Hey all,

    As some of you may or may not know, there was recently an exploit with Log4j that was discovered that can allow for remote code execution. I know a lot of servers dont update or check their dependencies often so it is better to be safe than sorry.

    https://blog.malwarebytes.com/exploi...-your-weekend/
    https://www.bleepingcomputer.com/new...ise-nightmare/
    https://arstechnica.com/information-...loud-services/

    I doubt anyone would target a rsps, but at the same time this community brought me a lot of enjoyment in my younger years. Please project your servers/players.
    Quote Originally Posted by blakeman8192 View Post
    Quitting is the only true failure.
    Reply With Quote  
     

  2. Thankful users:


  3. #2  
    Donator

    .css's Avatar
    Join Date
    Dec 2018
    Age
    29
    Posts
    579
    Thanks given
    89
    Thanks received
    270
    Rep Power
    351
    Yikes, I use tinylog personally but that's creepy
    Reply With Quote  
     

  4. #3  
    Contributor


    Join Date
    Jul 2010
    Posts
    450
    Thanks given
    256
    Thanks received
    268
    Rep Power
    1305
    Quote Originally Posted by Advocatus View Post
    I doubt anyone would target a rsps
    Famous last words! We've all seen what kind of scum lurks in the scene. Either way, a security vulnerability like this should be patched. Just too bad that majority of the noobs just download servers and barely know how to update their dependencies.
    I won't be surprised if someone's server is exploited with this. :/
    Reply With Quote  
     

  5. #4  
    Blurite

    Corey's Avatar
    Join Date
    Feb 2012
    Age
    26
    Posts
    1,491
    Thanks given
    1,245
    Thanks received
    1,729
    Rep Power
    5000
    Logging library reaching out and executing code from an LDAP server, what a good idea!
    Reply With Quote  
     

  6. Thankful user:



Thread Information
Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)


User Tag List

Similar Threads

  1. Replies: 0
    Last Post: 03-19-2011, 04:09 PM
  2. Stun, enfeeble, vulnerability gfx.
    By Throat in forum Requests
    Replies: 1
    Last Post: 02-02-2010, 11:24 PM
  3. Stun, enfeeble, vulnerability gfx
    By Throat in forum Configuration
    Replies: 0
    Last Post: 02-02-2010, 09:18 PM
  4. How to: Check if a login is vulnerable to SQL Injection
    By Zixt2 in forum Website Development
    Replies: 8
    Last Post: 01-16-2009, 12:17 AM
  5. Replies: 0
    Last Post: 01-15-2009, 12:33 AM
Posting Permissions
  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •