MikeBernardo
Starting Member
Canada
33 Posts |
Posted - 20 July 2001 : 09:35:15
|
My server at home was compromised yesterday by god knows who. I noticed that my /scripts folder contained the following files:
root.exe shell.exe Upload.asp Upload.html default.asp default.htm default.html index.asp index.htm index.html
If you get this, anyone can type http://www.yoururl.com/scripts/ and the message "F*ck the USA..." will show up. You can also type http://www.yoururl.com/scripts/root and root.exe will run on your server, and the process cannot be killed unless you kill inetinfo.exe first.
I installed a hotfix from Microsoft's website, which I think is not a fix for the hack I received... but anyway, just thought I'd let everyone know...
|
|