Follow us on Twitter!
You cannot teach a man anything; you can only help him find it within himself. - Galileo
Tuesday, August 30, 2016
Navigation
Home
 Find:
 Information:
Learn
Communicate
Submit
Shop
Challenges
 Exploit:
 Programming:
 Think:
 Track:
 Patch:
 Other:
 Need Help?
Other
Members Online
Total Online: 43
Guests Online: 40
Members Online: 3

Registered Members: 95299
Newest Member: wdghd
Latest Articles
View Thread

HellBound Hackers | Challenges | Patching

Author

patching 3


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 18-06-07 23:24
i know the function to use st***l****s and where and i know that im trying to stop some form of directory traversal attack but for the life of me i cant get the exploit type right any help would be greatly appreciated i've been at this challenge for ages


Author

RE: patching 3


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 18-06-07 23:37
mm, i suppose it is a form of directory transversal. you're going to want to name it right though.

remember, you want to patch it as soon as you can in the code. what's the earliest possible point you can validate the input?


Author

RE: patching 3


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 18-06-07 23:41
$page = $_GET['page']; - at least thats what i've been working with


Author

RE: patching 3

BIBER
Member



Posts: 70
Location: Serbia
Joined: 30.07.06
Rank:
Newbie
Posted on 19-06-07 01:25
Think of that page in browser,how would u use that exploit and there it is.
It doesn't have to be only directory transversal.


take your time,look around
i178.photobucket.com/albums/w261/BIBERR/Revisionist.jpg
i178.photobucket.com/albums/w261/BIBERR/dmz.jpg
Author

RE: patching 3


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 13-07-07 00:54
think about what the exploits does you can include files? help at all.....if thats too much let me know