Do you have a question? Post it now! No Registration Necessary. Now with pictures!
October 1, 2006, 12:21 am
rate this thread
$FileText = "/usr/bin/cat ";
$FileText .= ( $TempDir . $LogFile . " ");
$FilterText = " ";
$FilterText .= ("| " . $BaseDir . "services/" . $LogFile);
#$Command = $FileText . $FilterText . " ) 2>&1 ";
$Command = $FileText . $FilterText . ">" . $BaseDir .
"Results/" . $LogFile;
This is a piece of code, where lets say a malicious program has
modified , the file in $LogFile , ie it contains some executable code,
is it possible that the code will be executed when the $Command
variable is executed, if not , then how can an attacker with write
permissions to the $logfile find a way to execute his code , through
the above sequence of code
Re: pls help me with this
Perhaps you should ask in a hacker group?
I don't like to post information on how to attack a system in a public
Remove the "x" from my email address
JDS Computer Training Corp.