LOL SFDC 0wned r00twars.org, but not in a bad way ;)

Networking/Security Forums -> Exploits // System Weaknesses

Author: ShaolinTigerLocation: Kuala Lumpur, Malaysia PostPosted: Tue Nov 26, 2002 12:37 am    Post subject: LOL SFDC 0wned r00twars.org, but not in a bad way ;)
    ----
http://www.rootwars.org/forum/viewthread.php?tid=103

Check it out, big shout out to saxo for spotting it and me for owning it heh.

SF Rules, Yes WE DO! Twisted Evil SF Rules, Yes WE DO!

Author: ComSec PostPosted: Tue Nov 26, 2002 8:03 am    Post subject:
    ----
seems like its down....i get nothing Sad

Author: max_blakkLocation: South Wales UK PostPosted: Tue Nov 26, 2002 11:50 am    Post subject:
    ----
Top bananna..!!!! Twisted Evil

Not doing a write up on the exploit though..??? Question

Author: ShaolinTigerLocation: Kuala Lumpur, Malaysia PostPosted: Tue Nov 26, 2002 11:51 am    Post subject:
    ----
max_blakk wrote:
Top bananna..!!!! Twisted Evil

Not doing a write up on the exploit though..??? Question


I might do, it's that lame though it's hardly worth it.

Author: max_blakkLocation: South Wales UK PostPosted: Tue Nov 26, 2002 9:44 pm    Post subject:
    ----
Comon give us all a hint... Very Happy

Author: m0nk PostPosted: Tue Nov 26, 2002 11:22 pm    Post subject: XMB vuln.
    ----
ShaolinTiger~% wget http://www.site.com/forum/index_log.log

.....this is how he 0wned the forums, not the server...

...mmm tarball of Shaolin Tiger's home dir from darknet.co.uk?...maybe on a later post..........

Author: decypherohmLocation: World - Europe - Portugal - Lisbon PostPosted: Tue Nov 26, 2002 11:31 pm    Post subject:
    ----
that http sintaxe works in almost all forums?!?!?!?!

Author: max_blakkLocation: South Wales UK PostPosted: Wed Nov 27, 2002 1:33 pm    Post subject:
    ----
Thought it was something like that or an open php script or something from the "owned part of the site" bit..

Cheers monk new sec hole to look at..(but where you being a bit bitchy there..???)

Author: ComSec PostPosted: Wed Nov 27, 2002 7:11 pm    Post subject:
    ----
oooppps could not resist it anymore

http://www.mid-citieshonda.com/forum/viewthread.php?tid=10

LOL

Author: chrisLocation: ~/security-forums PostPosted: Wed Nov 27, 2002 7:15 pm    Post subject: Re: XMB vuln.
    ----
m0nk wrote:
...mmm tarball of Shaolin Tiger's home dir from darknet.co.uk?...maybe on a later post..........


rofl

anything interesting in there except porn ?

Author: ShaolinTigerLocation: Kuala Lumpur, Malaysia PostPosted: Wed Nov 27, 2002 7:46 pm    Post subject:
    ----
Hey collection of donkey pr0n r0x ok Wink

ComSec LMAO nice one Wink

Author: max_blakkLocation: South Wales UK PostPosted: Sat Nov 30, 2002 3:12 pm    Post subject:
    ----
This is catching... Very Happy

http://katharinehepburn.net/forum/viewthread.php?tid=48
Twisted Evil

Author: ComSec PostPosted: Sat Nov 30, 2002 3:21 pm    Post subject:
    ----
LOL, max_blakk

just shows you how easy it is to take over some forums....lazy Admins should add a few lines and create a .htaccess file

Open up Notepad and put the following in :


<Files index_log.log>
order allow,deny
deny from all
</Files>

<Files cplogfile.log>
order allow,deny
deny from all
</Files>


When you go to save it, use All Files as the file type, not as a txt file. Save the file as .htaccess and upload it to your XMB main directory and you're set.

good job we mean no harm and are just pointing the fact out

others, well they could wreek havoc Twisted Evil

nice 0ne again Wink

p.s just noticed your post .....cheeky , think he will now Laughing

http://www.mid-citieshonda.com/forum/viewthread.php?tid=10

Author: max_blakkLocation: South Wales UK PostPosted: Sat Nov 30, 2002 3:54 pm    Post subject:
    ----
Thx Comsec,

Another one is open phpmyadmin, found a few of those that would benfit from .htaccess files too... Wink



Networking/Security Forums -> Exploits // System Weaknesses


output generated using printer-friendly topic mod, All times are GMT + 2 Hours

Page 1 of 1

Powered by phpBB 2.0.x © 2001 phpBB Group