Threat Level: green Handler on Duty: Jan Kopriva

SANS ISC: e107 CMS system website compromised - SANS Internet Storm Center SANS ISC InfoSec Forums

Participate: Learn more about our honeypot network

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
e107 CMS system website compromised

The website of e107 CMS system was found to be compromised, directing users to malware site but was fixed within a few hours after the news got posted on Bugtraq mailing list. A notice posted on the website after the clean up points to the delay in patching to the latest released e107 software as the problem, as the latest version released few days ago fixed a security vulnerability.

There were also a zip file containing the e107 package that was backdoored. This file was located on the instead of Sourceforge which is the normal repository for e107. If you are running e107 (version 0.7.17), you might want to download the latest version from Sourceforge and compare source.

Lessons learned, patch quickly, especially if it is software you wrote and/or the public has access to the source code.



I will be teaching next: Application Security: Securing Web Apps, APIs, and Microservices - SANS Cloud & DevOps 2022


93 Posts
ISC Handler
Jan 26th 2010

Sign Up for Free or Log In to start participating in the conversation!