Ruby On Rails Exploit Used To Build IRC Botnet 91
Trailrunner7 writes "Developers who have not updated their Ruby on Rails installations with a five-month-old security patch would do well to secure the Web development framework now. Exploit code has surfaced for CVE-2013-0156 that is being used to build a botnet of compromised servers. Exploit code has been publicly available since the vulnerability was disclosed in January on Github and Metasploit, yet the vulnerability had not been exploited on a large scale until now, said security researcher Jeff Jarmoc."
One reason your web server firewall might want to block IRC connections to arbitrary hosts.
Idea (Score:5, Interesting)
There’s no authentication performed, so an enterprising individual could hijack these bots fairly easily by joining the IRC server and issuing the appropriate commands.
So, basically we could take control of theses servers and force them to update to the newest version of rails?
Re:Hah! (Score:2, Interesting)
Yeah, took a while to get rid of the plague in the Middle Ages as well, didn't it?