Vulnerability Development mailing list archives
perl/php connect-back backdoor?
From: Ingram <Vail () gmx net>
Date: Sun, 27 Jul 2003 19:19:52 +0200 (MEST)
hi folks, while pentesting a webserver i found a way to upload cgi/php scripts to /cgi-bin, but as verified with hping all ports except 113 (which needs root privs) are filtered. Means i couldn't use a portbinding backdoor, because all i got right know is uid www. I think a connect-back perl/php code could made it through this packtfilter, as the outbound rules could be less tight. Anyone aware of a backdoor like this? Thx in advantage Ingram -- +++ GMX - Mail, Messaging & more http://www.gmx.net +++ Jetzt ein- oder umsteigen und USB-Speicheruhr als Prämie sichern!
Current thread:
- perl/php connect-back backdoor? Ingram (Jul 28)
- RE: perl/php connect-back backdoor? Rick Patel (Jul 28)
- Re: perl/php connect-back backdoor? Knud Erik Højgaard (Jul 28)
- Re: perl/php connect-back backdoor? Diode Trnasistor (Jul 30)
- <Possible follow-ups>
- perl/php connect-back backdoor? Victor Pereira (Jul 30)