Mailinglist Archive: opensuse-security (485 mails)
| < Previous | Next > |
Re: [suse-security] Strange Apache log entry
- From: Keith Roberts <lists@xxxxxxxxxxxxxxxxx>
- Date: Thu, 18 Mar 2004 19:42:53 +0000 (GMT)
- Message-id: <Pine.LNX.4.44.0403181940310.4122-100000@xxxxxxxxxxxx>
On Thu, 18 Mar 2004, Arjen Runsink wrote:
> To: suse-security@xxxxxxxx
> From: Arjen Runsink <arjen@xxxxxxxxxxx>
> Subject: Re: [suse-security] Strange Apache log entry
>
> Hi,
>
> On Thursday 18 March 2004 20:20, Keith Roberts wrote:
> > Hi all!
> >
> > Just found this in my Apache log.
> Yes
>
> > Is this some sort of buffer overflow attack?
> Yes
>
> > 81.250.133.68 - - [18/Mar/2004:18:07:00 +0000] "SEARCH
> <snipped 400 lines which expanded to 800 when quoted !!!!>
> >x90 \x90\x90\x90\x90\x90\x90\x90\x90\x90\x90" 414 384
>
> Look in /var/log/httpd/error_log
>
> BB, Arjen
This is all that is in error_log ref above.
[Thu Mar 18 18:07:00 2004] [error] [client 81.250.133.68]
request failed: URI too long
Kind Regards - Keith Roberts
| < Previous | Next > |