News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

Cyberlot's Blog:
Funny little php "virus" floating around
February 12, 2007 @ 09:58:00

Richard Thomas comments on a "funny little PHP 'virus'" that he's noticed coming to him via emails:

Got an email that claimed to be from my host, it used a generic return address and talked about security upgrades and such and how due to new policy to help keep a secure data center I was required to upload and run 1 of 2 files in a zip attachment, the first was a php file the other was an asp file.

Of course, it wasn't from the host, so he investigated a little further to find out exactly what was going on with the file. Basically, it was a modified nsTView file with some added emailing and password discovery code. The code was "hidden" though - through a base64_encode call on one side and then decoded it on the other to cause the server to execute the code. He even posts and example of what the base64ed code might look like.

0 comments voice your opinion now!
virus upload base64 encode decode email nstview virus upload base64 encode decode email nstview


blog comments powered by Disqus

Similar Posts

Jim Plush\'s Blog: The Zend Encoder Fiasco Part Deux - The Personal Attack

Nick Halstead's Blog: Interviewing programmers 101 - Part 2

Cyberlot's Blog: Funny little php "virus" floating around

Stefan Esser's Blog: Suhosin 0.9.21 - XSS Protection

PHPClasses.org: File upload progress meter for PHP 4, at last!


Community Events

Don't see your event here?
Let us know!


php7 opinion api application example interview laravel community release podcast version testing voicesoftheelephpant framework series introduction performance symfony2 library extension

All content copyright, 2015 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework