Seeing a shitload of these in the apache logs:
/_mem_bin/..%5c../..%5c../..%5c../winnt/system32/cmd.exe
/_vti_bin/..%5c../..%5c../..%5c../winnt/system32/cmd.exe
/c/winnt/system32/cmd.exe
/d/winnt/system32/cmd.exe
/msadc/..%5c../..%5c../..%5c/..��../..��../..��../winnt/system32/cmd.exe
/scripts/..%2f../winnt/system32/cmd.exe
/scripts/..%5c../winnt/system32/cmd.exe
/scripts/..��../winnt/system32/cmd.exe
/scripts/..��..��..��..��..��..��..��..��/winnt/system32/cmd.exe
/scripts/..��../winnt/system32/cmd.exe
/scripts/..��../winnt/system32/cmd.exe
anyone got info on what exploit the kiddies are after? thanks!
--
Douglas J. Hunley ([EMAIL PROTECTED]) - Linux User #174778
Admin: http://hunley.homeip.net/ Admin: http://linux.nf/
Brainbench Linux Administration Certified
~~ Now offering Linux admin services for the home user ~~
This one's tricky. You have to use imaginary numbers, like eleventeen ...
-- Calvin
_______________________________________________
http://linux.nf -- [EMAIL PROTECTED]
Archives, Subscribe, Unsubscribe, Digest, Etc
->http://linux.nf/mailman/listinfo/linux-users
