hey guys... I tried to send this as a pm to the DEV team cos I didn't want to create a mass panic. But it won't let me, so me post and chances are it is already covered.
But has anyone heard of ... or is aware of an exploit called C99 and is integrmod protected against it.
basically what a person... (nasty little buggers should be squished like bugs[flash=,:1ju13gos]http://img105.imageshack.us/img105/6614/mad1iw8.gif[/flash:1ju13gos]) is uploads a shell exploit file via upload on your websites.. like if you have image upload available in galleries or avatar uploading... the shell file is disguised as a jpg.
like this using the browse feature
C:c99.php%00.jpg
It is a null byte string terminator so by entering the null byte they can upload this file to your server which then gives them total and complete access to your server, even above public HTML which means they can delete server files and just basically destroy your whole site. Lots of sites have been hit by this and you wouldn't even know the file was on the server unless you looked for it.. the file is called c99.php and would be in the upload file.
I heard about it through a friend who told me to get the word out to all my friends to look for the file.
the worse thing is it took me ten mins to find the actual shell execute file as well
if the Dev's want the actual file that is being uploaded into people websites then can you guys pm me or something.[flash=,:1ju13gos]http://img124.imageshack.us/img124/7944/emotions4pj5.gif[/flash:1ju13gos]