Impressive analysis of gallery exploit

Dec. 10th, 2003 02:12 pm
denny: (This way up)
[personal profile] denny
This is interesting - the initial entry point seems to be a poorly initialised variable in the gallery/geeklog libs or something, but from there on things get incredibly complex. The end result is the compromised machine (which was only running Apache) being used as a spam-sending box.

http://www.securityfocus.com/guest/24043
  • Current Mood: impressed
If you don't have an account you can create one now.
HTML doesn't work in the subject.
More info about formatting

If you are unable to use this captcha for any reason, please contact us by email at support@dreamwidth.org

 
Notice: This account is set to log the IP addresses of people who comment anonymously.
Links will be displayed as unclickable URLs to help prevent spam.

Profile

denny: Photo of my face in profile - looking to the right (Default)
Denny
denny.me

May 2020

S M T W T F S
     12
3456789
10111213141516
17181920212223
2425262728 2930
31      

Most Popular Tags

Active Entries

Style Credit

Expand Cut Tags

No cut tags
Top of page