Permalink
Cannot retrieve contributors at this time
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
2 lines (2 sloc)
860 Bytes
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <html><body bgcolor=#000000><table width=60% bgcolor=#000000 align=middle border=0><td><center><font color=#ffffff><h1>Site hacked by <font color=#00ff00>herbless@antionline.org</font></h1></center><br>Ever heard of the expression "weakest link in the chain" ? Well, that applieshere. Even the best security in the world can be circumvented by poorly written Perl scripts. Hint: `cat | cut -f1 d:` is pretty dangerous on unchecked input!<br><br>More to the point, Mr Admin, check out your /cgi-bin/usermaint.pl script. It passes unchecked input to shell-scripts which also don't do any checking. <b>This applies to every site hosted on your server - even those mounted across your NFS link.</b> I only hacked this one because it was the first I came to.<br><Br> </td></table></body></html> | |
| <!-- www.attrition.org web hack mirror - watermark or something --> |