Zimbra AJAX Webmail not loading
-
- Posts: 3
- Joined: Wed May 11, 2016 8:23 pm
Re: Zimbra AJAX Webmail not loading
Same problem here on our server. we take the following actions: we change the permissions according to ab_zimbra, we remove the lines in the contrab that call zmswatch and we block the address in the firewall http://93.113.108.146:443/cr.sh.
The environment is stable but we still can not resolve the problems with the attachments.
But the question that does not want to be silent is how to correct the vunerability so that another attack does not occur.
The environment is stable but we still can not resolve the problems with the attachments.
But the question that does not want to be silent is how to correct the vunerability so that another attack does not occur.
Re: Zimbra AJAX Webmail not loading
If you look in the forums you'll find out how to clean this hack from your server, you should then make sure your server is patched and at the most recent released version.sibercintra wrote:But the question that does not want to be silent is how to correct the vunerability so that another attack does not occur.
-
- Ambassador
- Posts: 2767
- Joined: Mon Dec 16, 2013 11:35 am
- Location: France - Drôme
- ZCS/ZD Version: All of them
- Contact:
Re: Zimbra AJAX Webmail not loading
The patch to avoid this have been available for more than a month now.
-
- Posts: 3
- Joined: Wed May 11, 2016 8:23 pm
Re: Zimbra AJAX Webmail not loading
AR84 wrote:Hey guys, dont forget to also check your Email Accounts, in our case there was some users with Administrator privilidge that have been added.
They added the accounts such as
no-replayz@....
no-rreplay@....
zmbr@....
Make sure you delete all accounts that are not from you.
here the user wrcm @
Re: Zimbra AJAX Webmail not loading
Does the search function of these forums not work any longer, is it not possible to read the product documentation or the Release Notes? If you had done any of those thing you'd know that patches in Zimbra are cumulative!!!yvespires wrote:Is this patch cumulative?
Re: Zimbra AJAX Webmail not loading
The upload/attachment problem has to do with the same issue. You can resolve by executing (as root):sibercintra wrote:Same problem here on our server. we take the following actions: we change the permissions according to ab_zimbra, we remove the lines in the contrab that call zmswatch and we block the address in the firewall http://93.113.108.146:443/cr.sh.
The environment is stable but we still can not resolve the problems with the attachments.
But the question that does not want to be silent is how to correct the vunerability so that another attack does not occur.
chmod 755 /opt/zimbra/data/tmp/upload
For information on mitigate and clean-up the hack, please refer to,
viewtopic.php?t=65932
https://lorenzo.mile.si/zimbra-cve-2019 ... ction/961/
Re: Zimbra AJAX Webmail not loading
AB_Zimbra wrote:We had exactly the same issue. And I saw that the files had the wrong permissions (executable instead of writeable).
Version: 8.7.11_GA_3800.NETWORK
I did the following (as root);
cd /opt/zimbra/mailboxd
find webapps -type d -exec chmod 0755 {} \;
find webapps -type f -exec chmod 0644 {} \;
Then restart Zimbra;
su - zimbra
zmcontrol restart
After that, everything working fine again and no such messages in the logs anymore.
My Zimbra Version: 8.6.0_GA_1194.NETWORK
It Working for me.. Thanks AB_Zimbra
Re: Zimbra AJAX Webmail not loading
Hello All...Does this vulnerability affect 8.7.9 network ?
Thanks
Dave
Thanks
Dave
Last edited by dhayes on Mon May 27, 2019 10:56 pm, edited 3 times in total.
Re: Zimbra AJAX Webmail not loading
Someone got rid of the emerging process .kthrotlds 400% proc
I am not very good specialist in Linux. Сan you explain step by step what i should do
8.7.7_GA_1787.FOSS
I am not very good specialist in Linux. Сan you explain step by step what i should do
8.7.7_GA_1787.FOSS