Vulnerability Development mailing list archives

Re: Apache Exploit

From: Michal Zalewski <lcamtuf () coredump cx>
Date: Thu, 20 Jun 2002 18:43:49 -0400 (EDT)

On Thu, 20 Jun 2002, Randy Taylor wrote:

Yep it works. Not only that, but preliminary indications are that those
OS'es not specifically supported in the GOBBLES 'sploit can be DOS'ed by
it. I've totally hosed RH Linux and FreeBSD boxen with it so far.


How come? At worst, Apache child on Linux should segfault and be restarted
(which is a bit resource- and time-expensive operation, but no biggie).
Perhaps you just DoSed it on TCP level? Or some other symptoms? Just
curious.

-- 
_____________________________________________________
Michal Zalewski [lcamtuf () bos bindview com] [security]
[http://lcamtuf.coredump.cx] <=-=> bash$ :(){ :|:&};:
=-=> Did you know that clones never use mirrors? <=-=
          http://lcamtuf.coredump.cx/photo/

Current thread:

Apache Exploit Stefan Esser (Jun 20)
- Re: Apache Exploit Blue Boar (Jun 20)
  - Re: Apache Exploit Randy Taylor (Jun 20)
    - Re: Apache Exploit Michal Zalewski (Jun 20)
    - Message not available
    - Re: Apache Exploit Randy Taylor (Jun 21)
    - Re: Apache Exploit David Bernick (Jun 21)
    - Re: Apache Exploit T0aD (Jun 22)
    - Re: Apache Exploit Alex Balayan (Jun 23)
    - Re: Apache Exploit Randy Taylor (Jun 24)
    - Re[2]: Apache Exploit dullien (Jun 26)
- Re: Apache Exploit 3APA3A (Jun 20)
  - Re: Apache Exploit Stefan Esser (Jun 20)
  - Re[2]: Apache Exploit dullien (Jun 20)
    - Re[2]: Apache Exploit Michal Zalewski (Jun 20)

(Thread continues...)