Anyone hear of some sort of a cracking method that uses cgi-bin/formmail?
I've seen alot of these in my httpd/access_log files
lately. I don't have formmail.pl anywhere on my system - I flushed all of
the cgi-bin stuff that came with apache a long time ago.
John
Search first next time:
http://www.google.com/search?hl=en&q=formmail+exploit&btnG=Google+Search
andy
Spammers use it for sending spam. Early versions of FormMail
didn't do any input checking and could be used to send mail to
any recipient.
-j
A quick search at securityfocus.org reveals that there were a couple of
formmail security problems and loophole that spammers used dating back to
last year. Here's a link to an email in the archive on securityfocus.org
that has a brief synopsis:
http://www.securityfocus.org/archive/1/193497
Hope this helps,
Tim