hosted by liquidweb


Go Back   Web Hosting Talk : Web Hosting Main Forums : Web Hosting : Whmcs +Livezilla Cause whmcs hack
Reply

Forum Jump

Whmcs +Livezilla Cause whmcs hack

Reply Post New Thread In Web Hosting Subscription
 
Send news tip View All Posts Thread Tools Search this Thread Display Modes
  #1  
Old 08-31-2010, 07:49 AM
gigageta gigageta is offline
Temporarily Suspended
 
Join Date: Aug 2010
Posts: 7
Exclamation

Whmcs +Livezilla Cause whmcs hack


Hi, I have had a bit of a issue hope someone can help me understand this and see if its true.
_

i was in online mode in livezilla desktop version and a client came onto my website he was it for about 10 minutes looking around, i opened the window in livezila to see what page he is looking at, then he went of the radar, so i thought he has left, about 1 hour later i added a new a admin and seen that there was another admin account which i never made.
when i looked back at the admin log in whmcs i seen that it was that ip that had logged on and made a user for himself/herself,

it got me thinking how could they have done it,
im protected by ssl, no 777 directorys but yet still made it through ,

then it clicked with me , when i opened the window in livezila to see what page he was on, maybe the active cookie on my pc(i was logged onto whmcs) was detected in his windows as i was looking at it through livezilla, transfared the active cookie and and opened admin panel,?
there was no loggin faled attempts

how could he have done it?
Please help



Sponsored Links
  #2  
Old 08-31-2010, 07:56 AM
iHubNet-Matt iHubNet-Matt is offline
Web Hosting Master
 
Join Date: Aug 2007
Posts: 6,883
This is sort of strange, I would also like to know how this might have happened.

  #3  
Old 08-31-2010, 07:59 AM
gigageta gigageta is offline
Temporarily Suspended
 
Join Date: Aug 2010
Posts: 7
so would i , i thought it was secure.

i just logged into whmcs, had it open doing nothing,

i was in online mode in livezlla, opened a ip address that someone was visiting on abd clicked the window to see what page they were on,
they were in the client area , so whmcs must have detected through livezilla the cookie on my pc, then saved the cookie on his pc, and he was able to log in,

Sponsored Links
  #4  
Old 08-31-2010, 08:09 AM
Matt R Matt R is offline
Tech dude
 
Join Date: Mar 2005
Location: New York City
Posts: 2,547
Quote:
Originally Posted by gigageta View Post
so whmcs must have detected through livezilla the cookie on my pc, then saved the cookie on his pc, and he was able to log in,
That's beyond unlikely.

The more likely scenario is that you didn't run the important update that was released by LiveZilla a few days back that fixed a yet to be released security hole.

More likely than not, you'll also find that the security hole grants access to the file system and you're running WHM/Livezilla out of the same homefolder.

A chmod of 777 wouldn't matter if the two sections of your site were in the same home folder -- a chmod of 755 to the same user would be more than enough.

__________________
Matthew Rosenblatt, and I do lots of things.
I'm a lighting designer for Celebrity Cruises. Check out my blog if you want.
I'm in the midst of [redacted] and [redacted] with an expected launch date of [redacted].
Simply put: Server admin, programmer, concert lighting dude.

  #5  
Old 08-31-2010, 08:16 AM
gigageta gigageta is offline
Temporarily Suspended
 
Join Date: Aug 2010
Posts: 7
livezilla has the latest update, and using the latest whmcs,

the whmcs is on a subdomain
livezilla isnt

  #6  
Old 08-31-2010, 10:51 AM
MikeDVB MikeDVB is offline
Web Host Extraordinaire!!!
 
Join Date: Dec 2007
Location: Indianapolis, Indiana USA
Posts: 14,873
Quote:
Originally Posted by gigageta View Post
the whmcs is on a subdomain
livezilla isnt
Subdomain or not - were they in the same actual account on the server?

__________________
Michael Denney - MDDHosting, LLC - Professional Hosting Solutions
LiteSpeed Powered - Shared, Reseller, Semi-Dedicated, and VPS
For high-end shared accounts ideal for business, check out our Semi-Dedicated offerings!
http://www.mddhosting.com/ - Providing Quality Services since 2007

  #7  
Old 08-31-2010, 04:52 PM
gigageta gigageta is offline
Temporarily Suspended
 
Join Date: Aug 2010
Posts: 7
no, whmcs was in seperate account to livezilla

  #8  
Old 08-31-2010, 05:01 PM
josephgarbett josephgarbett is offline
Web Hosting Master
 
Join Date: Jun 2009
Location: UK: Oxford
Posts: 1,238
Maybe you have an easy to guess LiveZilla password or not have one?? Just change all passwords on all hosting accounts. See if that changes anything.

__________________
Pub, Gym and Programming is now my life.

  #9  
Old 08-31-2010, 05:24 PM
Matt R Matt R is offline
Tech dude
 
Join Date: Mar 2005
Location: New York City
Posts: 2,547
Quote:
Originally Posted by gigageta View Post
no, whmcs was in seperate account to livezilla
That suggests a problem with the security of your server.

One subdomain can't grab cookies from another (easily).

__________________
Matthew Rosenblatt, and I do lots of things.
I'm a lighting designer for Celebrity Cruises. Check out my blog if you want.
I'm in the midst of [redacted] and [redacted] with an expected launch date of [redacted].
Simply put: Server admin, programmer, concert lighting dude.

  #10  
Old 08-31-2010, 05:30 PM
Dennis H Dennis H is offline
WHT Addict
 
Join Date: Dec 2009
Posts: 164
Yes, this is fully possible but very hard perform.
There are lots of 0-day exploits the developers don't know about, it's impossible to create a hacker safe software.

  #11  
Old 08-31-2010, 05:56 PM
HostNeighbor HostNeighbor is offline
Newbie
 
Join Date: Aug 2010
Location: Houston, TX
Posts: 28
That is odd indeed but anything is possible.

Ever notice how the only real issues in the tech world are software based?

People don't take the time to look through their code. They just pump out the software as fast as possible to make a buck asap.

__________________
██ Host Neighbor.com
██ http://www.hostneighbor.com
██ 24/7 Personal Support | Unlimited Hosting | Reseller Hosting | Dedicated Servers
██ Web Design | Website Maintenance | WHMCS | Softaculous | cPanel | RVSitebuilder

  #12  
Old 09-01-2010, 10:52 AM
gigageta gigageta is offline
Temporarily Suspended
 
Join Date: Aug 2010
Posts: 7
checked all server details, it has all latest kernels latest security updates, its not the server, everything is password protected whmcs and livezilla passwords contain letters numbers and symbols. its a strong password, livezilla server is ran on a wildcard ssl and accounts is ran on a standard ssl cert?

Any other help?

Reply

Similar Threads
Thread Thread Starter Forum Replies Last Post
Add LiveZilla icon to WHMCS Extinct Host Hosting Software and Control Panels 3 07-08-2010 02:08 AM
whmcs integration - whmcs install - whmcs upgrade - whmcs configuration Dustin Cisneros Design Offers 4 05-24-2010 12:30 AM
WHMCS, TCAdmin, LiveZilla Integration neXeon Design Requests 4 03-20-2010 07:03 PM
integration whmcs/solusvm/visionheldesk/livezilla stormfr Design Requests 7 03-17-2010 08:40 AM
WHMCS and Livezilla Integration AlanB- Design Requests 2 03-16-2010 10:24 PM

Related posts from TheWhir.com
Title Type Date Posted
OnApp Releases New WHMCS Module for Service Providers Web Hosting News 2014-01-21 14:04:13
WHMCS Security Issue Allows for Information Disclosure Web Hosting News 2013-10-25 09:30:46
WHMCS Releases Patch to Address Critical Security Issue Web Hosting News 2013-10-04 16:12:43
WHMCS Releases Version 5.2 of Web Hosting Billing Solution Web Hosting News 2013-04-14 22:35:37
ResellerClub Module Helps Resellers Provision Hosting Products through WHMCS Control Panel Web Hosting News 2012-09-06 16:17:27


Tags
hacked, livezilla, whmcs, whmcs 4.3

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Postbit Selector

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Forum Jump
Login:
Log in with your username and password
Username:
Password:



Forgot Password?
Advertisement:
Web Hosting News:



 

X

Welcome to WebHostingTalk.com

Create your username to jump into the discussion!

WebHostingTalk.com is the largest, most influentual web hosting community on the Internet. Join us by filling in the form below.


(4 digit year)

Already a member?