On Tuesday 18 September 2001 12:14 pm, Sys Admin wrote:
> Seeing a shitload of these in the apache logs:
> /_mem_bin/..%5c../..%5c../..%5c../winnt/system32/cmd.exe
> /_vti_bin/..%5c../..%5c../..%5c../winnt/system32/cmd.exe
> /c/winnt/system32/cmd.exe
> /d/winnt/system32/cmd.exe
> /msadc/..%5c../..%5c../..%5c/..Á../..Á../..Á../winnt/system32/cmd.exe
> /scripts/..%2f../winnt/system32/cmd.exe
> /scripts/..%5c../winnt/system32/cmd.exe
> /scripts/..À¯../winnt/system32/cmd.exe
> /scripts/..À¯..À¯..À¯..À¯..À¯..À¯..À¯..À¯/winnt/system32/cmd.exe
> /scripts/..Á../winnt/system32/cmd.exe
> /scripts/..Áœ../winnt/system32/cmd.exe
>
> anyone got info on what exploit the kiddies are after? thanks!
Same here.... tons of them... And my server doesn't do much.
--
+----------------------------------------------------------------------------+
+ Bruce S. Marshall [EMAIL PROTECTED] Bellaire, MI 09/18/01 14:38 +
+----------------------------------------------------------------------------+
"Ignorance or Apathy? I don't know, and I don't care!"
_______________________________________________
http://linux.nf -- [EMAIL PROTECTED]
Archives, Subscribe, Unsubscribe, Digest, Etc
->http://linux.nf/mailman/listinfo/linux-users
