Monday, August 15. 2005
While some other people were busy discussing my motives and trying to covince others of my poor intentions, I was busy coordinating and preparing the release of another round of very serious XMLRPC vulnerabilities.
For more detailed information have a look at my advisories for PEAR XML_RPC and PHPXMLRPC.
Please upgrade your PEAR XML_RPC package as soon as possible or prepare to get owned by the next wave of XML_RPC exploits.
Updated packages for Drupal are already out and the other 21 affected applications will follow soon.