[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-security] what is this default.ida line all about
- Subject: Re: [cobalt-security] what is this default.ida line all about
- From: oblix <oblix@xxxxxx>
- Date: Mon, 13 Aug 2001 13:30:27 +0200
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
May I ask where you have been last 4 weeks???
On a vacation trip in the South Pacific???
This is Code Red trying to attack you, which failed. Therefore you have a
404 :)
Greetz,
Oblix
At 08:08 13-8-2001 -0400, you wrote:
[06/Aug/2001:05:47:07 -0600] "GET
/default.ida?XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX%u9090%u6858%ucbd3%u7801%u9090%u6858%ucbd3%u7801%u9090%u6858%ucbd3%u7801%u9090%u9090%u8190%u00c3%u0003%u8b00%u531b%u53ff%u0078%u0000%u00=a
HTTP/1.0" 404 205 "-" "-"
Can anyone tell me what these get requests for default.ida with a big
long string, are?
I expect it's some sort of buffer overflow attempt, trying to exploit a
known exploit. Anyone know about this?
Eric
_______________________________________________
cobalt-security mailing list
cobalt-security@xxxxxxxxxxxxxxx
http://list.cobalt.com/mailman/listinfo/cobalt-security