[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[cobalt-security] Long url windows exploit

Subject: [cobalt-security] Long url windows exploit
From: Carrie Bartkowiak <ravencarrie@xxxxxxxx>
Date: Mon, 16 Jul 2001 09:38:37 -0400
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

I know this is a windows exploit, but just a heads up that I'm 
starting to get quite a few of these in my logs:
http://my.ip.address/anydirectory/..%255c..%255c..%255c..%255cwinnt/sy
stem32/cmd.exe?/c+dir

and also the same type of URL without the /c+dir at the end.

Sometimes I'm just happy that these are windows exploits, really... 
:)
-- 
Carrie Bartkowiak, ravencarrie@xxxxxxxx on 07/16/2001

Follow-Ups:
- Re: [cobalt-security] Long url windows exploit
  - From: Bill Irwin

Prev by Date: Re: Re: [cobalt-security] Copied from securiteam.com: Apache '?'Configuration Bug (List content)
Next by Date: Re: [cobalt-security] Copied from securiteam.com: Apache '?' Configuration Bug (List content)
Previous by thread: Re: [cobalt-security] Copied from securiteam.com: Apache '?' Configuration Bug (List content)
Next by thread: Re: [cobalt-security] Long url windows exploit

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index