[ic] IC-specific hacking attempt

Grant emailgrant123b at yahoo.com
Sun Mar 28 21:49:39 EST 2004


--- Kevin Walsh <kevin at cursor.biz> wrote:
> Grant [emailgrant123b at yahoo.com] wrote:
> > I noticed the following request in my logs and
> thought I'd mention it to
> > you guys: 
> > 
> > www.mydomain.com/cgi-bin/mycatalog/__SQLUSER__
> > 
> > It's the first hacking attempt I've seen that
> looks
> > IC-specific.  Is there anything I might want to
> check my system out for?
> > 
> I can verify the problem on a 5.0 system.  I haven't
> looked at it
> on 5.1 yet, but I suspect that it'll be the same.

I only brought this up because it looked IC-specific. 
Typing the path on your system causes the variable to
be interpreted in the body text and title?  Does it
not on mine because I'm using [data session last_url]?

- Grant

- Grant

__________________________________
Do you Yahoo!?
Yahoo! Finance Tax Center - File online. File on time.
http://taxes.yahoo.com/filing.html


More information about the interchange-users mailing list