Full Disclosure mailing list archives
Re: file inclusion (les visiteurs)
From: "Evert Daman" <linux () digipix org>
Date: Wed, 3 Dec 2003 09:16:12 +0100
If I'm wrong, Evert, correct me. I think that it is a security realted post, and blames are out of contest.I blamed the ppl trying to exploit this vulnerability, not Evert, because it's interessting to see, at least for me it is.
thank god no-one is blaming me for this :P no. it was meant to be a warning. i found the way they found my site (using google: [29/Nov/2003:20:53:13 +0100] "GET /counter/?view=year&ypd=1 HTTP/1.1" 200 14565 "http://www.google.com.br/search?num=100&hl=pt-BR&ie=UTF-8&oe=UTF-8&q=allinu rl%3A+%3Fview%3Dyear+ypd%3D1&meta=" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322)") and my post was meant to be a warning for al sites listed on the google-results of the url above. i don't know if they found vunerable sites though. the first 10 results i checked still looked normal to me :) kind regards, Evert _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- file inclusion (les visiteurs) Evert Daman (Dec 01)
- Re: file inclusion (les visiteurs) Lorenzo Hernandez Garcia-Hierro (Dec 01)
- Re: file inclusion (les visiteurs) Dan (Dec 01)
- Re: file inclusion (les visiteurs) Lorenzo Hernandez Garcia-Hierro (Dec 01)
- Re: file inclusion (les visiteurs) Evert Daman (Dec 01)
- Re: file inclusion (les visiteurs) gazpa (Dec 01)
- Re: file inclusion (les visiteurs) Christian Horchert (Dec 01)
- Re: file inclusion (les visiteurs) Lorenzo Hernandez Garcia-Hierro (Dec 02)
- Re: file inclusion (les visiteurs) gazpa (Dec 02)
- Re: file inclusion (les visiteurs) Christian Horchert (Dec 02)
- Re: file inclusion (les visiteurs) Evert Daman (Dec 03)
- Re: file inclusion (les visiteurs) Lorenzo Hernandez Garcia-Hierro (Dec 01)
- Re: file inclusion (les visiteurs) Christian Horchert (Dec 01)