[Dshield] Anyone know what this is?

Samantha sama at enteract.com
Tue Aug 28 00:44:38 GMT 2001


 From a quick search of the web, I found what looks like a good article at:
http://www.eeye.com/html/Research/Advisories/AD20010501.html

It appears to be an attempt at exploiting a remote buffer overflow vulnerability
for Windows 2000 IIS 5.0 (and with SP1).

Hope this is helpful..

Cheers,
Samantha

-----Original Message-----
From:	Gary Benson [SMTP:gary at inauspicious.org]
Sent:	Monday, August 27, 2001 6:01 PM
To:	dshield at dshield.org
Subject:	[Dshield] Anyone know what this is?


Hi all,

Any ideas what this is? I found it in my Apache access_log.

64.225.196.160 - - [26/Aug/2001:21:10:03 +0100] "GET /NULL.printer HTTP/1.0" 404 206 -

Cheers,
Gary

[ gary at inauspicious.org ][ GnuPG 85A8F78B ][ http://inauspicious.org/ ]

_______________________________________________
Dshield mailing list
Dshield at dshield.org
To change your subscription options (or unsubscribe), see: http://www1.dshield.org/mailman/listinfo/dshield




More information about the list mailing list