Update for OpenX ad server closes hole

The OpenX developers have released version 2.8.7 of their free open source ad server, likely closing the security hole discovered earlier this week. The vulnerability was the result of a component integrated in OpenX’s video plug-in from a third-party, which allows images to be uploaded. The “Open Flash Chart 2″ module (ofc_upload_image.php) failed to check [...]

September 17th, 2010 | Tags: | Category: Bugs, Software | Comments are closed

Web sites distribute malware via hacked OpenX servers

The vulnerability in the free OpenX ad server made public on Monday is already being actively exploited to distribute malware. According to press reports, a server that provides The Pirate Bay with ad banners was hacked, but browsers that use Google’s Safe Browsing API to reach the site are warned that it has dangerous content. [...]

September 15th, 2010 | Tags: | Category: Bugs | Comments are closed