Xpire/Splitinfinity.info Server Hack and Malware injection using ...
Short summary:
Page 910 What the server hack is exploiting. Page 11 The Malware installation process ... 1) The hackers choose a public web server XXX to hack ...
Long summary:
Xpire/Splitinfinity.info Server Hack and Malware injection using IFRAMES Vulnerability Condensed VersionPage 1Xpire/Splitinfinity.info Server Hack andMalware injection using IFRAMESVulnerability Condensed VersionReport written by Christopher Boydpaperghost@vitalsecurity.orgwww.vitals ecurity.orgDocument created 21/11/2004Last Updated / Revised 25/11/2004:Analysis of X.fulltgp.net added.All content produced by the author unless otherwise stated technicalinformation and details relating to specific server hacks contributed by EliaFlorio Malware install procedure contributed by Eric L Howes Analysis ofXpire.info / X.fulltgp.net installs contributed by Lawrence AbramsCopyright Christopher Boyd 2004 all rights reservedPage 2CONTENTS:Pages 34 Introduction The server hack backgroundPages 678 The server hack in actionPage 910 What the server hack is exploiting The Malware installation processPage 12131415 An analysis of the Xpire.info infectionPage 161718 An analysis of the X.fulltgp.net infection Avoiding an install EndUsers Avoiding an install Server AdminsPage 2122 ReferencesWARNING: Some of the links contained in this document could lead to severe MalwareTrojan and Virus infections. Please do NOT click any of the links accidentally as you maybecome infected if you are not running the latest AV signature files and Malware protectiontools. The author cannot take any responsibility for any harm done to individual PC'sand / or networks if you click any of the links contained within. The links are presentedin their entirety so that Server Admins can look out for malicious redirects and end users canadd them to their blacklists.Page 3INTRODUCTION:A number of web servers are falling victim to a server hijack where a variant of the Suckitrootkit is being used to dynamically inject code into the pages served from the compromisedmachines. Using the Internet Explorer IFrames vulnerability the code serves as a gateway toa number of different pages at the following dom ...
Source: www.vitalsecurity.org
Related
CSTP Ethical Hacking: HandsOn 2, side attacks. Transferring hacker tools
using TFTP Server. . Hacking Web
applications. Find & assess weakness in
PHP & ASP.NET web. . applications ...,
more
Hacking Techniques, Hacking Techniques. Network based System
Hacking. Web Server Hacking. Physically
enter the Target Building. WLAN
(Wireless LAN) Hacking ...,
more
