Parallels a anuntat un fix pentru o posibila vulnerabilitate in Plesk 10
Parallels has issued a security hotfix to Parallels Plesk Panel 10.0.1 through the Micro-Updates system.
It is referenced as MU#2 – Plesk admin password changing.
The Micro-Update delivers bug fix for a vulnerability that could allow authorized Plesk users to change Plesk ‘admin’ password and then compromise Control Panel.
For instructions on implementing Micro-updates, please refer to:
http://kb.parallels.com/en/9294 – Using Micro-Updates in Parallels Plesk Panel 9.x, 10.x and Parallels Small Business Panel.
For instructions on upgrading from the panel, please refer to the Administrator Manual at:
This notification is made pursuant to our development policy of notifying users when critical security issues arise and making fixes available as soon as possible. Please ensure that this patch has already been applied as soon as possible.