[nycphp-talk] php vulns from SecurityFocus Newsletter # 211

Analysis & Solutions danielc at
Mon Aug 25 20:55:23 EDT 2003

Slow Down Internet Worms With Tarpits

IPtables handles this by allowing a tarpitted port to accept any incoming 
TCP connection. When data transfer begins to occur, the TCP window size is 
set to zero, so no data can be transferred within the session. The 
connection is then held open, and any requests by the remote side to close 
the session are ignored. This means that the attacker must wait for the 
connection to timeout in order to disconnect. This kind of behavior is bad 
news for automated scanning tools (like worms) because they rely on a 
quick turnaround from their potential victims.

Slammer worm crashed Ohio nuke plant network

Horde Application Framework Account Hijacking Vulnerability

HostAdmin Path Disclosure Vulnerability

Xoops BBCode HTML Injection Vulnerability

HolaCMS HTMLtags.PHP Local File Include Vulnerability

PHPSecureSite SQL Injection Vulnerabilities

MatrikzGB Guestbook Administrative Privilege Escalation Vuln...

Atilla PHP Content Management System Multiple Web Vulnerabil...

Fusion News Unauthorized Account Addition Vulnerability

     FREE scripts that make web and database programming easier
 T H E   A N A L Y S I S   A N D   S O L U T I O N S   C O M P A N Y
 4015 7th Ave #4AJ, Brooklyn NY    v: 718-854-0335   f: 718-854-0409

More information about the talk mailing list