[Full-Disclosure] Possible apache2/php 4.3.9 worm
dk
dk at pwarchitects.com
Thu Dec 23 02:12:57 GMT 2004
Barrie Dempster wrote:
> On Wed, 2004-12-22 at 09:03 +0000, DanB UK wrote:
>
>>Hi,
>>I was wondering if anyone has a sample of this.
>>I'm giving a talk at 21c3 and would like to provide some analysis on it.
>>Cheers,
>>Daniel.
> http://www.k-otik.com/exploits/20041222.sanityworm.pl.php
Do read the code carefully though Dan. Right off hand I can see errors
that were also in the code posted to bugtraq on the 20th; K-OTik may
have added more, dunno.
--
dk
Full-Disclosure is hosted and sponsored by Secunia.