18 Mar
2004
18 Mar
'04
17:07
On Thu, 18 Mar 2004, Arjen Runsink wrote:
To: suse-security@suse.com From: Arjen Runsink <arjen@zeilers.net> Subject: Re: [suse-security] Strange Apache log entry
Hi,
On Thursday 18 March 2004 20:20, Keith Roberts wrote:
Hi all!
Just found this in my Apache log. Yes
Is this some sort of buffer overflow attack? Yes
81.250.133.68 - - [18/Mar/2004:18:07:00 +0000] "SEARCH <snipped 400 lines which expanded to 800 when quoted !!!!> x90 \x90\x90\x90\x90\x90\x90\x90\x90\x90\x90" 414 384
Look in /var/log/httpd/error_log
BB, Arjen
This is all that is in error_log ref above. [Thu Mar 18 18:07:00 2004] [error] [client 81.250.133.68] request failed: URI too long ========================== See: http://www.securiteam.com/exploits/5WP0C0K6AW.html
7596
Age (days ago)
7596
Last active (days ago)
0 comments
1 participants
participants (1)
-
Bill.Light@kp.org