Someone posed the question in a pen-test thread titled 'Malicious file upload in .JPG or GIF format'
of how to pen test logins forms. While this isn't a new subject people are still asking the question
and this is a decent thread to learn about the subject.
Thread Link: http://archives.neohapsis.com/archives/sf/pentest/2008-02/thread.html#102
