 |
|
|
|
|
|
|
|
|
2005-05-09, 12:39 PM
|
#1 |
|
Heh Heh Heh! Lisa! Vampires are make believe, just like elves and gremlins and eskimos!
Join Date: Nov 2004
Posts: 70
|
Matt's Formmail Script Problem
If a site is running a typical "Matts" formmail script, version 1.92 and a site is getting 400+ hostile emails being generated from it with the fields being filled in along the lines of the following...
/../../../../../../../../../../etc/passwd^^ but mostly the fields are filled with "FormFillText" Is there anything I can do to stop this happening please? I renamed the script to something really obscure, back in 2002, and renamed it again two minutes ago. The hosting is so basic (not mine) and won't allow me to do much else than use perl scripts. Any advice gratefully accepted, thanks 
__________________
<^^> |
|
|
|
2005-05-10, 05:09 AM
|
#2 |
|
All the way from Room 101
Join Date: Aug 2003
Posts: 3,557
 |
Renaming the script will definately work.
__________________
|
|
|
|
|
2005-05-10, 11:29 AM
|
#3 |
|
a.k.a. Sparky
Join Date: Sep 2004
Location: West Palm Beach, FL, USA
Posts: 2,396
|
upgrading to the latest version and making sure the referrer and destination fields are properly assigned will work as well.
That's a pretty old exploit that they are trying.
__________________
SnapReplay.com a different way to share photos - iPhone & Android |
|
|
|
|
2005-05-10, 12:11 PM
|
#4 |
|
Heh Heh Heh! Lisa! Vampires are make believe, just like elves and gremlins and eskimos!
Join Date: Nov 2004
Posts: 70
|
Thanks guys
__________________
<^^> |
|
|
|
 |
|
|
Linear Mode
