Re: New worm segfaults apache

[bugtraq <bugtraq () cgisecurity net>]

1.3.20 on freebsd 4.3 stable with all security patches applied.
I have 256 megs of ram and don't run alot of applications so I know its
not a lack of memory/ swap/etc.. :x


> What version of Apache?
>
> Chris
>
> -----Original Message-----
> From: bugtraq
> To: incidents () securityfocus com
> Sent: 9/18/01 11:37 AM
> Subject: New worm segfaults apache
>
> Hello,
>
>
> Over 15 times my apache has segfaulted whenever I get scanned by this
> worm.
>
> Sep 18 13:30:15 cgisecurity /kernel: pid 35290 (httpd), uid 1003: exited
> on signal 11
> Sep 18 13:38:03 cgisecurity /kernel: pid 35390 (httpd), uid 1003: exited
> on signal 11
> Sep 18 14:06:00 cgisecurity /kernel: pid 35391 (httpd), uid 1003: exited
> on signal 11
> Sep 18 14:20:51 cgisecurity /kernel: pid 35453 (httpd), uid 1003: exited
> on signal 11
> Sep 18 15:27:22 cgisecurity /kernel: pid 35740 (httpd), uid 1003: exited
> on signal 11
> ^C
>
> Any idea why apache is segfaulting? I have 250 megs of free ram without
> proccess limits and
> it segfaults. Also I tried every string and have been unable to
> replicate it manually.
>
> - admin () cgisecurity com
>
>
> ------------------------------------------------------------------------
> ----
> This list is provided by the SecurityFocus ARIS analyzer service.
> For more information on this free incident handling, management 
> and tracking system please see: http://aris.securityfocus.com
>
> ----------------------------------------------------------------------------
> This list is provided by the SecurityFocus ARIS analyzer service.
> For more information on this free incident handling, management 
> and tracking system please see: http://aris.securityfocus.com


----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management 
and tracking system please see: http://aris.securityfocus.com