Google has helped to stop Santy searching for vulnerable phpBB installs by blocking search requests that the worm is making. There are a number of variants now that are not just targeting phpBB but rather any PHP script, after some other issues have been found which could have an affect on quite a number of PHP based applications.
Running a search on the beta MSN search engine yields plenty of results which proves that the impact of Santy has been widespead. Due to the other issues that have been discovered it seems that upgrading to phpBB 2.0.11 and PHP 4.3.10 does not make you totally safe.
The source code to the original proof of concept phpBB exploit as well as the source to the Santy worm are available which will probably allow for the development of more variants that are exploiting similar vulnerabilities in other PHP based scripts.Post ID: 610, posted by jase at 11:53 PM
Thanks for signing in, . Now you can comment. (sign out)(If you haven't left a comment here before, you may need to be approved before your comment will appear.)