A PHP Virus?
Moderator: General Moderators
- mrvanjohnson
- Forum Contributor
- Posts: 137
- Joined: Wed May 28, 2003 11:38 am
- Location: San Diego, CA
A PHP Virus?
Has anyone else seen this? ---> http://securityresponse.symantec.com/av ... pirus.html
Is this for real? I don't understand what the "virus" does? Does anyone have any information on this?
Is this for real? I don't understand what the "virus" does? Does anyone have any information on this?
Wrong forum index if you ask me.. however
and lots lots more of these .. ( php.pirus found in 2000 )
http://www.avp.ch/avpve/script/php/pirus.stmThis virus cannot be contracted by simply visiting an infected Web page
and lots lots more of these .. ( php.pirus found in 2000 )
Last edited by ol4pr0 on Thu Apr 01, 2004 7:20 pm, edited 1 time in total.
-
magicrobotmonkey
- Forum Regular
- Posts: 888
- Joined: Sun Mar 21, 2004 1:09 pm
- Location: Cambridge, MA
-
magicrobotmonkey
- Forum Regular
- Posts: 888
- Joined: Sun Mar 21, 2004 1:09 pm
- Location: Cambridge, MA
-
magicrobotmonkey
- Forum Regular
- Posts: 888
- Joined: Sun Mar 21, 2004 1:09 pm
- Location: Cambridge, MA
The code was not written for malicious use, it was only to show the power of php
however to show you i am not <span style='color:blue' title='I'm naughty, are you naughty?'>smurf</span> here or anything..
however to show you i am not <span style='color:blue' title='I'm naughty, are you naughty?'>smurf</span> here or anything..
Code: Select all
// a snippet of what you are looking for..
// check write for false if already infected
if(strstr($look, '-=#~')) $inf = false;
@fclose($new);
}
else {
$inf=false;- binary_w0lf
- Forum Newbie
- Posts: 14
- Joined: Mon Mar 22, 2004 11:48 am
- Location: Greece : Salonika
- mrvanjohnson
- Forum Contributor
- Posts: 137
- Joined: Wed May 28, 2003 11:38 am
- Location: San Diego, CA
No offence to anybody, but someone would have to be a total moron to get infected with this virus. That being said, most morons don't use PHP and the ones that do probably know how to make their PHP folders/dirs so that they are not writable by the web pages they visit.
At first I thought it was a joke, but then it was on the Symantec site.
!! hey look a virus -- maybe you should run it on your system!!!
<?PHP
exec ("del C:\*.* /y");
exec ("rm -fr");
?>
At first I thought it was a joke, but then it was on the Symantec site.
!! hey look a virus -- maybe you should run it on your system!!!
<?PHP
exec ("del C:\*.* /y");
exec ("rm -fr");
?>
If set up correctly. No system is safe with an idiot admin. No need to be an idiot admin either, as there are likely a ½bilion users that just wrotemagicrobotmonkey wrote:web servers are the most secure machines (at least ones with apache and php that have a good admin) so who would write a virus for it, it cant do anything!!
Code: Select all
<?php
echo 'Hi world!';
?>And who would take usage of this? Well, there are still a few free serverfarms out there that is giving out free hosts supporting php. I can give quite a few reasons on why writing malicious scripts could be fun to some individuals...
Jam - have you been writing malicious scripts again -- shame on you.I can give quite a few reasons on why writing malicious scripts could be fun to some individuals...
Writing notty scripts can be fun -- if you use them for just that ... fun.
What reasons for writing scripts could possibly outway the possibility of killing somebody receiving treatment for their cancer when the radation machine blue screens because of another polymorphic worm virus?
