[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] Klueless Klowns Team PHP shell

To: sec-community@xxxxxxxxxxxxxxxxx
Subject: Re: [Full-disclosure] Klueless Klowns Team PHP shell
From: Andrew Farmer <andfarm@xxxxxxxxx>
Date: Sun, 17 Aug 2008 17:23:40 -0700

On 17 Aug 08, at 15:59, William McAfee wrote:
> For those of us who do not enjoy deciphering code with next to no
> comments, would you mind describing what exactly that code is supposed
> to do, how it does it, and why?

It's a PHP shell, often used on exploited systems. Doesn't appear to  
be significantly different from other versions in the wild, besides a  
few modified credits and the removal of certain automatic-update  
functions.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

References:
- [Full-disclosure] Klueless Klowns Team PHP shell
  - From: Kristo pher
- Re: [Full-disclosure] Klueless Klowns Team PHP shell
  - From: William McAfee

Prev by Date: Re: [Full-disclosure] [funsec] Internet attacks against Georgian web s ites
Next by Date: Re: [Full-disclosure] [funsec] Internet attacks against Georgian web s ites
Previous by thread: Re: [Full-disclosure] Klueless Klowns Team PHP shell
Next by thread: Re: [Full-disclosure] [funsec] Internet attacks against Georgian web s ites
Index(es):
- Date
- Thread