PHP Code Obfuscation

Info Nessus Network Monitor Plugin ID 6926

Synopsis

PVS detected a suspicious PHP file using obfuscation.

Description

PVS Detected a suspicous PHP file using obfuscation.

Solution

Remove any instances of the script and conduct a forensic examination to determine how it was installed as well as whether other unauthorized changes were made.

See Also

http://www.sophos.com/security/analyses/viruses-and-spyware/phpc99shella.html

Plugin Details

Severity: Info

ID: 6926

Family: Backdoors

Published: 2013/07/09

Modified: 2015/06/01

Risk Information

Risk Factor: Info

Vulnerability Information

CPE: cpe:/a:php:php