Follow us on Twitter!
Never in the field of human conflict was so much owed by so many to so few. - Winston Churchill
Thursday, April 24, 2014
Navigation
Home
HellBoundHackers Main:
HellBoundHackers Find:
HellBoundHackers Information:
Learn
Communicate
Submit
Shop
Challenges
HellBoundHackers Exploit:
HellBoundHackers Programming:
HellBoundHackers Think:
HellBoundHackers Track:
HellBoundHackers Patch:
HellBoundHackers Other:
HellBoundHackers Need Help?
Other
Members Online
Total Online: 16
Guests Online: 15
Members Online: 1

Registered Members: 82904
Newest Member: jamessmith123
Latest Articles
View Thread

HellBound Hackers | Challenges | Patching

Author

patching 3


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 18-06-07 23:24
i know the function to use st***l****s and where and i know that im trying to stop some form of directory traversal attack but for the life of me i cant get the exploit type right any help would be greatly appreciated i've been at this challenge for ages


Author

RE: patching 3


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 18-06-07 23:37
mm, i suppose it is a form of directory transversal. you're going to want to name it right though.

remember, you want to patch it as soon as you can in the code. what's the earliest possible point you can validate the input?


Author

RE: patching 3


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 18-06-07 23:41
$page = $_GET['page']; - at least thats what i've been working with


Author

RE: patching 3

BIBER
Member



Posts: 70
Location: Serbia
Joined: 30.07.06
Rank:
Newbie
Posted on 19-06-07 01:25
Think of that page in browser,how would u use that exploit and there it is.
It doesn't have to be only directory transversal.


take your time,look around
i178.photobucket.com/albums/w261/BIBERR/Revisionist.jpg
i178.photobucket.com/albums/w261/BIBERR/dmz.jpg
Author

RE: patching 3


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 13-07-07 00:54
think about what the exploits does you can include files? help at all.....if thats too much let me know