WebApp Sec mailing list archives

PNphpBB (phpBB for Post Nuke), WebCalendar and Others

From: "Mark Ryan del Moral Talabis" <talabis () gmail com>
Date: Tue, 4 Apr 2006 16:03:04 +0800

PNphpBB (phpBB for Post Nuke), WebCalendar and Others

We have been picking up a couple of old but very persistent attacks
going around these days. These attacks concentrates on code injection
attempts on 2 popular web applications (PNphpBB - phpBB for Post Nuke
and WebCalendar) and some rather persistent cmd.exe access attempts
through IIS. The attacks are old ones though and are most likely just
hitting a brick wall throughout the internet but still a general
nuisance.

Full Analysis:
http://www.philippinehoneynet.org/index.php

Ryan Talabis
Lead Analyst
Philippine Honeynet Project
http://www.philippinehoneynet.org

-------------------------------------------------------------------------
Sponsored by: Watchfire

Watchfire's AppScan is the industry's first and leading web application
security testing suite, and the only solution to provide comprehensive
remediation tasks at every level of the application. Change the way you
think about application security testing - See for yourself.
Download a Free Trial of AppScan 6.0 today!

https://www.watchfire.com/securearea/appscansix.aspx?id=701300000007kaF
--------------------------------------------------------------------------

Current thread:

PNphpBB (phpBB for Post Nuke), WebCalendar and Others Mark Ryan del Moral Talabis (Apr 04)