Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security FullDisclosure
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Full-Disclosure] phpWebSite-0.10.0_exploit

from [Colin . Scott] Network Security [Permanent Link]
Subject: Re: [Full-Disclosure] phpWebSite-0.10.0_exploit
Date: Fri, 25 Feb 2005 16:23:05 +0000 
Well I cant get this to work.

The annoucements module doesnt allow non-graphics extensions so the PHP
file doesnt get uploaded.

Regards,

Colin.





                                                                           
             tjomka                                                        
             <tjomka@navigator                                             
             .lv>                                                       To 
             Sent by:                  full-disclosure@lists.netsys.com    
             full-disclosure-b                                          cc 
             ounces@lists.nets                                             
             ys.com                                                Subject 
                                       [Full-Disclosure] phpWebSite-0.10.0 
                                       _exploit                            
             24/02/2005 22:16                                              
                                                                           
                                                                           
             Please respond to                                             
                  tjomka                                                   
             <tjomka@navigator                                             
                   .lv>                                                    
                                                                           
                                                                           




phpWebSite-0.10.0_exploit(See attached file: nst.gif.php)(See attached
file: phpWebSite-0.10.0.EN.txt)
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html


***********************************************************************************

This e-mail is confidential and may contain privileged information.  If you 
are not the addressee or if you have received the e-mail in error, it may
be unlawful for you to read, copy, distribute, disclose or otherwise use the 
information which it contains.  Under these circumstances, please notify us 
immediately by returning this mail to 'mailerror@csplc.com' and deleting this 
e-mail from your system.

Any views expressed by an individual within this e-mail do not necessarily 
reflect the views of Cadbury Schweppes Plc or its subsidiaries.  Cadbury 
Schweppes Plc will not be bound by any agreement entered into as a result of 
this email, unless its intention is clearly evidenced in the body of the email. 
 Whilst we have taken reasonable steps to ensure that this e-mail and 
attachments are free from viruses, recipients are advised to subject this mail 
to their own virus checking, in keeping with good computing practice. Please
note that email received by Cadbury Schweppes Plc or its subsidiaries may be 
monitored in accordance with the prevailing law in the United Kingdom.

***********************************************************************************

Attachment: nst.gif.php
Description: Binary data

Attachment: phpWebSite-0.10.0.EN.txt
Description: Binary data

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [Full-Disclosure] CIS WebServer Directory Traversal Bug, CorryL
Next by Date:  [Full-Disclosure] Re: Xfree86 video buffering?, Riad S. Wahby
Previous by Thread:  [Full-Disclosure] phpWebSite-0.10.0_exploit, tjomka
Next by Thread:  [Full-Disclosure] [FLSA-2005:2336] Updated kernel packages fix security issues, Marc Deslauriers
Indexes:  [Date] [Thread] [Top] [All Lists]