IMPORTANT NOTICE ABOUT timthumb.php SECURITY VULNERABILITY

on 2011, BlogDecember 5th
———- Forwarded message ———-
From: (mt) Media Temple
Date: Mon, Dec 5, 2011 at 10:36 PM
Subject: SUPPORT (req# 1405613) – Response | Subject: IMPORTANT NOTICE ABOUT YOUR (gs) Grid-Service
To: 

***********************************************
|  THIS IS A ONE-WAY EMAIL NOTICE ONLY.
|  PLEASE USE THE ACCOUNTCENTER TO RESPOND.
***********************************************

Anthony,

It has come to our attention that your (your website) (gs) Grid-Service has been hosting the following scripts that are vulnerable to a specific exploit:

/domains/…/themes/coffeebreak/thumb.php
/domains/….com/html/wp-content/themes/journalcrunch/journalcrunch/timthumb.php
/domains/….com/html/wp-content/themes/coffeebreak/thumb.php
/domains/….com/html/wp-content/themes/bueno/thumb.php

Unfortunately, due to recent wide spread distributed attacks trying use this exploit, we have been forced to preemptively disable these files .  Please do not re-enable them unless they have been updated to the latest version.  For more information on this exploit you can check out the following links.

http://weblog.mediatemple.net/2011/08/02/security-update-timthumb-php-vulnerability/

http://blog.sucuri.net/2011/08/attacks-against-timthumb-php-in-the-wild-list-of-themes-and-plugins-being-scanned.html

Please remember that you are responsible for keeping any scripts or software installed on your server up to date and secure. We apologize for any inconvenience this has caused, but this action was necessary to ensure the security of your server. Thank you for your understanding.

If you have any further questions regarding this notice, please feel free to contact us at any time by responding to this support request in the AccountCenter.

—————————————————-
During the course of support you may respond or update this request in the AccountCenter at the following URL:
https://accountcenter.mediatemple.net/support/viewrequest.mt?id=1405613

Please note, this email is a one-way notification that your support request has been updated. All communication with the support staff is handled directly online through the AccountCenter web interface. Should a new unrelated support issue occur during the progress of this request, please open a new separate request inside the AccountCenter.

Posted via email from ntho: anthony cerreta