WebApp Sec mailing list archives

Awstats and XMLRPC for PHP attacks

From: Mark Ryan del Moral Talabis <talabis () gmail com>
Date: Sun, 8 Jan 2006 15:10:09 +0800

More attacks on Awstats and XMLRPC for PHP. What's new in this case is
the 2 new malware variants (at least in our case) that we picked up
that is being downloaded to the target as part of the attack
mechanism.

Full writeup:
http://www.philippinehoneynet.org/dataarchive.php?date=2005-12-28

Ryan Talabis
Philippine Honeynet Project

-------------------------------------------------------------------------------
Watchfire's AppScan is the industry's first and leading web application
security testing suite, and the only solution to provide comprehensive
remediation tasks at every level of the application. See for yourself.
Download AppScan 6.0 today.

https://www.watchfire.com/securearea/appscansix.aspx?id=701300000003Ssh
-------------------------------------------------------------------------------

Current thread:

Awstats and XMLRPC for PHP attacks Mark Ryan del Moral Talabis (Jan 08)