UnitedForums - UK Web Hosting Forum UnitedHosting Community Hosting Forums
Network and Server StatusCustomer SupportUK Web Hosting
UnitedHostingUnitedHosting Sitemap UK Hosting ForumUK Web HostingWeb Hosting ForumsUK Reseller HostingWeb Host CommunityUK Managed Dedicated ServersHosting Help and SupportUK Domain Name Registration

Go Back   UnitedForums.co.uk > UnitedHosting Community > Webmaster Discussion
Credible sitejacking threat Credible sitejacking threat

Reply
 
Thread Tools Rate Thread Display Modes
Old 18th July 2008, 02:57 PM   #1 (permalink)
canuckster
Lumberjack and I'm okay
 
Join Date: Dec 2004
Location: Canada
Posts: 242
Credible sitejacking threat
This exploit appears to have affected, among others, the UK's National Health Service, so it probably warrants attention.

PC World - Business Center: Major Sites Fall Victim to Web Hijack

James
canuckster is offline   Reply With Quote
Old 18th July 2008, 03:33 PM   #2 (permalink)
Terra
Registered User
 
Terra's Avatar
 
Join Date: Oct 2005
Location: old cottage
Posts: 928
If I read this correctly though it only affects .asp pages, so anybody on Linux with .php would not be hit?

Finjan MCRC Blog 2008 - Governmental, Healthcare, and Top Business Websites have fallen victims to the new round of Asprox mass attack
__________________
Underground, Overground, Wombling Free!
Terra is offline   Reply With Quote
Old 18th July 2008, 03:48 PM   #3 (permalink)
desquinn
Senior Member
 
Join Date: Dec 2005
Location: Paisley
Posts: 317
While it does hit asp sites the technique could be used on any DB based site. Its a standard SQL injection and replaces images or image code.

For any windows server operators then have a look at URLscan version 3 as it can fend it off until you get the code fixed. Similarly htaccess should be able to deal with any attempts on php. Just look for CAST, DECLARE, EXEC etc.....
desquinn is offline   Reply With Quote
Reply

« Previous Thread | Next Thread »

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Display Modes Rate This Thread
Linear Mode Linear Mode
Rate This Thread:

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off


All times are GMT. The time now is 07:07 PM.
Archive - Top

UK Web Hosting  |  UK Reseller Hosting  |  UK Dedicated Servers UnitedHosting  |  UnitedSupport  |  UnitedForums  |  SEO by vBSEO 3.0.0
Copyright © 1998-2008 United Communications Limited. All Rights Reserved. Registered in England and Wales 3651923 - VAT Reg No. 737662309