ConfigServer Community Forum

Peer support forums for ConfigServer Scripts
https://mail.forum.configserver.com/

cxs v6.26 exploit detection bug

https://mail.forum.configserver.com/viewtopic.php?t=9978

Page 1 of 1

cxs v6.26 exploit detection bug

Posted: 03 Jan 2017, 10:14
by fright
Hello there

After updating to CxS v6.26, I started to experience a problem.

CxS can no longer detect many exploits that it can detect before. In particular, base64 exploits can not be caught in any way.

The same problem exists with the new/clean servers I have installed.

Although I selected all file types for trial purposes, base64 files can not detect anything.

Is there a bug in this version?

Sample file content

***********************
<?php
eval (base64_decode('ZXJyb3JfcmVwb3J0aW5nKDcpO........

**********************

Re: cxs v6.26 exploit detection bug

Posted: 26 Jan 2017, 09:40
by fright
The problem continues.

New files not detected by cxs.

***
if(!function_exists('b'.'as'.'e6'.'4_'.'en'.'co'.'de')){function
__ZW5jb2Rlcg($data){if(empty($data))return;$b64='ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=';$o1
= $o2 = $o3 = $h1 = $
***

Re: cxs v6.26 exploit detection bug

Posted: 26 Jan 2017, 12:13
by Sarah
Please use the helpdesk for technical support of cxs.
https://support.configserver.com/
All times are UTC
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited