Matt Posted August 8, 2013 Report Posted August 8, 2013 OpenX, a leader provider of digital and mobile advertising technology has accordingly served backdoor that are injected into the Code and allows hackers to control over your web browser.German tech site the Heise notified Germany's computer emergency response team (CERT) this week about the OpenX Ad Server (2.8.10) backdoor, allowing an attacker to execute any PHP code via the "eval" and could have provided attackers full acces to their web sites.The OpenX team has confirmed the breach and OpenX senior application security engineer Nick Soraccor said that two files in the binary distribution of 2.8.10 had been replaced with modified files that contained a remote code execution vulnerability.The attack code is written in PHP but is hidden in a JavaScript file that is part of a video player plugin (vastServerVideoPlayer) in the OpenX distribution.This vulnerability only applies to the free downloadable open source product, OpenX Market ( exchange ) and OpenX Lift (SSP) are not affected.Server administrator can find out if they are running the OpenX version that contains the backdoor by searching for PHP tags inside .js files.Researchers from Sucuri provide a simple command for this : $ grep -r --include "*.js"'<?php' DIRECTORYWHEREYOURSITEISThis is not the first time when Opex.org has been hacked.Last year in March 2012 , it was hacked and served malware to users.OpenX has now released OpenX source v2.8.11, which according to Soraccor, is a mandatory upgrade for all users of 2.8.10 that should be applied immediately.Sursa TheHackerNews.Com Quote
