Pergunta

Found a weird hack today someone was exploiting, was wondering how this arbitary code could execute thousands of emails an hour.

http://pastebin.com/m7nBSmfB

Foi útil?

Solução

There's nothing weird about the code you posted -- it builds up a PHP function in an obfuscated fashion -- then it calls the generated code.

The real problem/issue is, how is your server being made to run this code? If you have indeed been exploited by this, it's because you're allowing them to run arbitrary PHP code on your server.

You need to figure out how that happened.

Licenciado em: CC-BY-SA com atribuição
Não afiliado a StackOverflow
scroll top