Re: SV: [Full-Disclosure] YAPPS...

roman.kunz_at_juliusbaer.com
Date: 08/13/04

  • Next message: Adam Zabrocki: "[Full-Disclosure] Advanced usage of system() function."
    To: <kruse@krusesecurity.dk>
    Date: Fri, 13 Aug 2004 11:51:24 +0200
    
    

    hi peter,

    i thought the phisher is trying to add my inputs to a file
    (fopen(palka.txt)) and then redirect it to paypal. but there's an error in
    the paypal.php script.
    Warning: fopen(palka.txt): failed to open stream: Permission denied in
    /usr/home/patrolsafe/public_html/cgi-bin/paypal.php on line 2
    Warning: fputs(): supplied argument is not a valid stream resource in
    /usr/home/patrolsafe/public_html/cgi-bin/paypal.php on line 5
    Warning: fclose(): supplied argument is not a valid stream resource in
    /usr/home/patrolsafe/public_html/cgi-bin/paypal.php on line 23

    cheers
    roman

    PS: may i should have a look at the palka.txt file...

    ---
    Funny phishing attempt.
    None of the information that you submit are sent to the bogus site. All
    referals seems to point to the legit PayPal website. Especially the login
    and sign up information would be useful to a "Phisher", but this also goes
    to the legit site. I wonder ...
    *****Disclaimer*****
    This message is for the addressee only and may contain confidential or privileged information. You must delete and not use it if you are not the intended recipient. It may not be secure or error-free. All e-mail communications to and from the Julius Baer Group may be monitored. Processing of incoming e-mails cannot be guaranteed. Any views expressed in this message are those of the individual sender. This message is for information purposes only. All liability of the Julius Baer Group and its entities for any damages resulting from e-mail use is excluded. US persons are kindly requested to read the important legal information presented after clicking here: http://www.juliusbaer.com/maildisclaimer
    _______________________________________________
    Full-Disclosure - We believe in it.
    Charter: http://lists.netsys.com/full-disclosure-charter.html
    

  • Next message: Adam Zabrocki: "[Full-Disclosure] Advanced usage of system() function."

    Relevant Pages

    • Re: PHP [win32] & CLI Testers needed.
      ... written, lets just say to create shell emulation for now, and have ... My previous attempts to create the source below, ended with the loop ... Debug Warning: testforLinuxUser.php line 24 - stream_select: supplied argument is not a valid stream resource ...
      (php.general)
    • Re: PHP [win32] & CLI Testers needed.
      ... written, lets just say to create shell emulation for now, and have ... My previous attempts to create the source below, ended with the loop ... Debug Warning: testforLinuxUser.php line 24 - stream_select: supplied argument is not a valid stream resource ...
      (php.general)
    • Re: Undefined Index
      ... Warning: fwrite: supplied argument is not a valid stream resource in ... Get parameters in form action work only if the form method is POST... ...
      (comp.lang.php)
    • Re: fopen php5 htaccess question
      ... Warning: fwrite: supplied argument is not a valid stream resource in ... > Class CreateXML{ ... > public function xmlDeclaration(){ ...
      (comp.lang.php)
    • Re: Problem with fsockopen()
      ... Temporary failure in name resolution in ... Warning: fwrite: supplied argument is not a valid stream resource in ...
      (comp.lang.php)