Hola a todos,<\/p>\n
Ha llegado recientemente un comunicado de la empresa Parallels indicando que existe una vulnerabilidad detectada en algunas de las versiones de Plesk Panel.<\/p>\n
La versiones afectadas seg\u00fan indican las fuentes de Parallels son:<\/p>\n
Plesk 8.4 Linux<\/p>\n
Plesk 8.3\u00a0Linux<\/p>\n
Plesk 8.2\u00a0Linux<\/p>\n
Plesk 8.1\u00a0Linux<\/p>\n
Plesk 9.3\u00a0Linux<\/p>\n
Plesk 9.2\u00a0Linux<\/p>\n
Plesk 9.0\u00a0Linux<\/p>\n
Plesk 10.0.x\u00a0Linux<\/p>\n
Plesk 10.1 Linux<\/p>\n
Plesk 10.2 Linux<\/p>\n
<\/p>\n
Esta\u00a0vulnerabilidad\u00a0permite a un atacante\u00a0an\u00f3nimo\u00a0comprometer la seguridad de los servidores Plesk.<\/p>\n
<\/p>\n
<\/p>\n
\u00bfComo se soluciona?<\/p>\n
En primer lugar hay que bajar el fichero de esta URL:\u00a0https:\/\/kb.parallels.com\/Attachments\/18827\/Attachments\/api.tar.gz en vuestro servidor con una de las versiones indicadas anteriormente.<\/p>\n
Y realizar las siguientes acciones:<\/p>\n
<\/p>\n
# gzip -d api.tar.gz\r\n# tar -xf api.tar\r\n# cp $PRODUCT_ROOT_D\/admin\/plib\/api-rpc\/Agent.php $PRODUCT_ROOT_D\/admin\/plib\/api-rpc\/Agent.php.backup\r\n# cp api\/plesk-<VERSION>\/Agent.php $PRODUCT_ROOT_D\/admin\/plib\/api-rpc\/Agent.php<\/pre>\n<\/p>\n","protected":false},"excerpt":{"rendered":"Hola a todos, Ha llegado recientemente un comunicado de la empresa Parallels indicando que existe una vulnerabilidad detectada en algunas de las versiones de Plesk Panel. La versiones afectadas seg\u00fan indican las fuentes de Parallels son: Plesk 8.4 Linux Plesk 8.3\u00a0Linux Plesk 8.2\u00a0Linux Plesk 8.1\u00a0Linux Plesk 9.3\u00a0Linux Plesk 9.2\u00a0Linux Plesk 9.0\u00a0Linux Plesk 10.0.x\u00a0Linux Plesk 10.1 Linux Plesk 10.2 Linux Seguir leyendo<\/a>","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"footnotes":""},"categories":[5],"tags":[216,16,213,214],"class_list":["post-1734","post","type-post","status-publish","format-standard","hentry","category-noticias","tag-linux","tag-plesk","tag-servidores-dedicados","tag-servidores-virtuales-vps","cat-5-id"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/hosting.airetech.es\/blog\/wp-json\/wp\/v2\/posts\/1734","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/hosting.airetech.es\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/hosting.airetech.es\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/hosting.airetech.es\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/hosting.airetech.es\/blog\/wp-json\/wp\/v2\/comments?post=1734"}],"version-history":[{"count":4,"href":"https:\/\/hosting.airetech.es\/blog\/wp-json\/wp\/v2\/posts\/1734\/revisions"}],"predecessor-version":[{"id":5673,"href":"https:\/\/hosting.airetech.es\/blog\/wp-json\/wp\/v2\/posts\/1734\/revisions\/5673"}],"wp:attachment":[{"href":"https:\/\/hosting.airetech.es\/blog\/wp-json\/wp\/v2\/media?parent=1734"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/hosting.airetech.es\/blog\/wp-json\/wp\/v2\/categories?post=1734"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/hosting.airetech.es\/blog\/wp-json\/wp\/v2\/tags?post=1734"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}