Threat Level: green Handler on Duty: Russell Eubanks

SANS ISC: December 2015 Joomla zero-day vulnerability - Internet Security | DShield SANS ISC InfoSec Forums


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
December 2015 Joomla zero-day vulnerability
On Monday 2015-12-14, the Sucuri Blog posted an entry about a Critial 0-day remote code execution vulnerability in Joomla [1]. That same day, a patch was made available by Joomla [2].

This hasn't gotten as much coverage as previous Joomla vulnerabilities, probably because there hasn't been reports of attacks in the wild like there was in a previous vulnerability in October 2015 [3].

As always, it's a good security practice to keep your software patched and up-to-date. Please keep this in mind with any operating system or application platform.


References:

[1] blog.sucuri.net/2015/12/…
[2] developer.joomla.org/security-centre/…
[3] blog.sucuri.net/2015/10/…
Brad

252 Posts
ISC Handler

Sign Up for Free or Log In to start participating in the conversation!