Posted by Sandman on 12/16/30 11:57

In article <1157456510.333540.78430@m73g2000cwd.googlegroups.com>,
"Oski" <oski@gmx.de> wrote:

> Sandman wrote:
>
> > Why? I have no idea. I'd have top see the entire script for that.
>
> There is no more script, no more than what was posted by me! The other
> lines (mentioned as ommitted) are only other declarations of scalar
> variables. If you omit these, the effect is quite the same.
>
> Btw, I'll not disclose which script is vulnerable (at least not now).
> I consider contacting the authors first - if this thread turns out to
> be a real security hole ...

Then I suppose the script, as seen, was a small part of a larger
"hack" library, which the author cut'n'pasted from.

I've been "hacked" this was also, so I've seen some of these scripts.




--
Sandman[.net]

• Next in forum: Re: Hacked with system()
• Prev in forum: Re: PHP more development time?
• Thread view: Re: Hacked with system()

[Reply to this message]