Full Disclosure mailing list archives

Re: SANS PHP Port Scanner Remote Code Execution

From: Harry Hoffman <hhoffman () ip-solutions net>
Date: Tue, 05 Mar 2013 21:07:31 -0500

lolz, that's great! I guess it shouldn't be surprising, he's a
undergrad. But even most grad students make these sorts of mistakes...
academicware ;-)

Cheers,
Harry

On 03/05/2013 08:46 PM, laurent gaffie wrote:

http://resources.infosecinstitute.com/php-build-your-own-mini-port-scanner/

Finding the vulnerability in this code is left as an exercise to the reader.

PS: "*Your comment will be awaiting moderation forever."*



_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

SANS PHP Port Scanner Remote Code Execution laurent gaffie (Mar 05)
- Re: SANS PHP Port Scanner Remote Code Execution Fayyaz Ali (Mar 05)
- Re: SANS PHP Port Scanner Remote Code Execution Harry Hoffman (Mar 05)
  - Re: SANS PHP Port Scanner Remote Code Execution laurent gaffie (Mar 05)
    - Re: SANS PHP Port Scanner Remote Code Execution Alexandre Teixeira (Mar 06)
- Re: SANS PHP Port Scanner Remote Code Execution Źmicier Januszkiewicz (Mar 06)
  - Re: SANS PHP Port Scanner Remote Code Execution Benji (Mar 06)
    - Re: SANS PHP Port Scanner Remote Code Execution Benji (Mar 06)
    - Re: SANS PHP Port Scanner Remote Code Execution Ulisses Montenegro (Mar 06)
    - Re: SANS PHP Port Scanner Remote Code Execution Dan Ballance (Mar 06)
    - Re: SANS PHP Port Scanner Remote Code Execution Christian Sciberras (Mar 06)
    - Re: SANS PHP Port Scanner Remote Code Execution Ulisses Montenegro (Mar 06)
    - Re: SANS PHP Port Scanner Remote Code Execution Christian Sciberras (Mar 06)

(Thread continues...)