Update on mitigation procedure
It has been decided that we will disable logins for all our customers, including Zope-only customers.We're doing this because it is the best way we can handle the problem, and it is a quick fix to switch the sites back to handling logins again.
But we strongly recommend you take the appropriate measures such as installing a hotfix for Plone before enabling logins again.
[Permalink] [By morphex] [Plone vulnerability (privilege escalation) (Atom feed)] [2011 02 Feb 15:42 GMT+2]