Security Incidents mailing list archives

Previous By Date Next
Previous By Thread Next

Suspicious 404's

From: dso <dso () moosoft com>
Date: Wed, 12 Jul 2006 08:44:27 -0600
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

I got some suspicious error reports overnight.  In my own research it
looks like an attempt to exploit a very old bug.  Perhaps it is very new.

For brevity I have not included the header in each one.

A 404 error was encountered by 212.143.111.82 on Wed Jul 12 2006 6:03:09
EDT.

The URI which generated the error is:
/.JPEG
/.jpeg
/.JPG
/.jpg
/.GIF
/.gif
/%0A%7D%0AypSlideOutMenu.prototype.mov
/window.clearTimeout(this.aniTimer)%0Athis.mov
/d%0Athis.mov

Daniel

- --
MooSoft Development Inc
http://www.moosoft.com
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.1 (Cygwin)

iD8DBQFEtQrLOIPyvowS3NoRAu/fAKCI5qtqHV+F8E/VPtqhxMiYo6TRtQCdGNWi
cFU7DvMb0wfzeVRuPcn5fwY=
=7Y13
-----END PGP SIGNATURE-----

------------------------------------------------------------------------------
This List Sponsored by: Black Hat

Attend the Black Hat Briefings & Training USA, July 29-August 3 in Las Vegas. 
World renowned security experts reveal tomorrow's threats today. Free of 
vendor pitches, the Briefings are designed to be pragmatic regardless of your 
security environment. Featuring 36 hands-on training courses and 10 conference 
tracks, networking opportunities with over 2,500 delegates from 40+ nations. 

http://www.blackhat.com
------------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: