[+] Information

Vulnerability	: Timthumb RFI
Details		: http://secunia.com/advisories/45416/

Details:
The following URL list contains the RFI pathes used by bots to
exploit possible out-dated Timthumb setups.


[+] URL List:

http://img.youtube.com.ignorelist.com:55000/.google/byroe.php
http://img.youtube.com.ignorelist.com:55000/.google/wpengine.php
http://picasa.combo.opsetconsulting.com/byroe.php
http://blogger.com.autismactivism.org/get.php
http://blogger.com.herzelconsultores.com.ar/shell.php
http://blogger.com.mesco.com.vn/login.php
http://blogger.com.nilgirisrealty.com/cok.php
http://blogger.com.omahastorm.org/jek.php
http://blogger.com.pinkfc.com/thumb/id.php
http://blogger.com.pinkfc.com/thumb/jef.php
http://blogger.com.textrock.com/xcyb.php
http://blogger.community.thermomixphils.com/2.php
http://flickr.com.bpmohio.com/byroe_cpf.php
http://flickr.com.fashionandbeautyonline.cl/.stun.php
http://img.youtube.com.fashionandbeautyonline.cl/nxs.php
http://img.youtube.com.novedadesmarta.es/telek.php
http://picasa.com.afina.ro/bogel.php
http://picasa.com.dv9.demopm.com/crash.php
http://picasa.com.jcibuenosaires.com.ar/2.php
http://picasa.com.medo.ro/pilat.php
http://picasa.com.oeildupirate.com/yahoo.php
http://picasa.com.richcityidol.com/yahoo.php
http://picasa.com.supremovestibulares.com.br/yahoo.php
http://picasa.com.yourfashionchic.it/idlink.php
http://picasa.communication.mpgallery.info/2.php
http://wordpress.com.junglerumblepartyvenue.co.za/index.php
http://wordpress.com.usurnsonline.com/new.php
http://wordpress.company.travelagencymanila.com/2.php

Last list update: 28 March 2012


[+] Contact

Anestis Bechtsoudis,
anestis@bechtsoudis.com

NOC & Security Administration Group,
Laboratory for Computing (Computer Center) - LabCom CC,
Computer Engineering & Informatics Dept,
University of Patras, Greece