[Owasp-delhi] (no subject)

Deepak Gupta deepak at infobase.in
Sat Feb 21 06:11:59 EST 2009

Dear All


I would like to know "How an attacker can forcibly open a port on server
without using SSH. I have seen that an hacker was able to do sql injection
and able to insert url redirection in table. 


Whenever the hacked site is opened, it redirect the users to hacker's site
pakbugs.org where as it also succeed to open ftp-proxy port 2121 on server.
Please tell me how one can open a port without root permission. 



Deepak Gupta
Head Server
Compare Infobase Limited
C-62, Community Centre
Janak Puri, New Delhi
Phone: 91-11-25542045, 41588013, 14
Mobile: +919871399012
E-mail:  <mailto:deepak at infobase.in> deepak at infobase.in
 <http://www.infobase.co.in/> www.infobase.co.in


-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-delhi/attachments/20090221/32cfc250/attachment.html 

More information about the Owasp-delhi mailing list