Author Topic: Any Rule for This?  (Read 3537 times)

Offline brijendrasial

  • Comodo Loves me
  • ****
  • Posts: 132
  • Comodo SSL
Et tu, Brute? | You're My Pumpkin Pumpkin Hello Honey Bunny

Offline TDmitry

  • Head CWAF Rule Writing Team
  • Comodo's Hero
  • *****
  • Posts: 370
Re: Any Rule for This?
« Reply #1 on: October 03, 2014, 07:27:58 AM »
Will be covered with next update.

Offline Hedloff

  • Comodo Loves me
  • ****
  • Posts: 156
Re: Any Rule for This?
« Reply #2 on: January 27, 2015, 03:12:34 PM »
No rule was created for the slider hack?

Offline brijendrasial

  • Comodo Loves me
  • ****
  • Posts: 132
  • Comodo SSL
Re: Any Rule for This?
« Reply #3 on: January 28, 2015, 12:44:44 AM »
Not till now.. :(
Et tu, Brute? | You're My Pumpkin Pumpkin Hello Honey Bunny

Offline Hedloff

  • Comodo Loves me
  • ****
  • Posts: 156
Re: Any Rule for This?
« Reply #4 on: January 28, 2015, 03:30:03 AM »
Strange.....Since Fortinet got this pretty fast and also Sucuri has this in their WAF.
Why cannot Comodo get a rule to stop this?

Hope they can get rules out asap when there is hugh hackings like this in the future!  ???

Offline TDmitry

  • Head CWAF Rule Writing Team
  • Comodo's Hero
  • *****
  • Posts: 370
Re: Any Rule for This?
« Reply #5 on: January 28, 2015, 11:23:53 AM »
Strange.....Since Fortinet got this pretty fast and also Sucuri has this in their WAF.
Why cannot Comodo get a rule to stop this?

Hope they can get rules out asap when there is hugh hackings like this in the future!  ???
Will be fixed with next update (29.01.2015)
« Last Edit: January 28, 2015, 11:44:28 AM by TDmitry »

Offline xanubi

  • Comodo Loves me
  • ****
  • Posts: 106
Re: Any Rule for This?
« Reply #6 on: May 15, 2015, 04:06:38 AM »
Still there isn't protection against this, unfortunately.

Offline Hedloff

  • Comodo Loves me
  • ****
  • Posts: 156
Re: Any Rule for This?
« Reply #7 on: May 15, 2015, 07:57:42 AM »
Revslider protection should be added. I have seen this on our servers for a while now.....

Offline TDmitry

  • Head CWAF Rule Writing Team
  • Comodo's Hero
  • *****
  • Posts: 370
Re: Any Rule for This?
« Reply #8 on: May 15, 2015, 08:07:14 AM »
Still there isn't protection against this, unfortunately.
Rule 222050 must fix this. Make sure it is enabled.

Offline xanubi

  • Comodo Loves me
  • ****
  • Posts: 106
Re: Any Rule for This?
« Reply #9 on: May 15, 2015, 10:17:38 AM »
Hello, it's enabled, and still the exploit is on the wild.

I think you should see this hacking script, that exploits all the possibilities that revslider have, there are a couple of variants, unfortunately.

1st
Code: [Select]
http://www.exploit4arab.net/exploits/1405
2nd
Code: [Select]
http://packetstormsecurity.com/files/131246/WordPress-Revolution-Slider-File-Upload.html

Offline TDmitry

  • Head CWAF Rule Writing Team
  • Comodo's Hero
  • *****
  • Posts: 370
Re: Any Rule for This?
« Reply #10 on: May 15, 2015, 10:36:03 AM »
It looks like for a various vulnerabilities in this plugin. We will check it.

 

Free Endpoint Protection
Seo4Smf 2.0 © SmfMod.Com Smf Destek