[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [cobalt-users] C drive hack

Subject: RE: [cobalt-users] C drive hack
From: Octavio Heredia <oheredia@xxxxxxxxxx>
Date: Tue Sep 18 03:52:02 2001
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

What is causing those entries on our log files? Is our data in danger of
being compromised? Thank you very much, I just adopted our Raq4 where a lot
of critical information is stored. Any other information of these log
entries would be of great help.

Octavio Heredia

-----Original Message-----
From: Scott w [mailto:webbcite@xxxxxxxxxxx]
Sent: Tuesday, September 18, 2001 11:13 AM
To: cobalt-users@xxxxxxxxxxxxxxx
Subject: RE: [cobalt-users] C drive hack


>www.site.com 216.234.235.118 - - [18/Sep/2001:06:49:52 -0700] "GET
>/scripts/..%%35c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 400 215 "-" "-"
>
>www.site.com 216.234.199.92 - - [18/Sep/2001:06:51:19 -0700] "GET
>/MSADC/root.exe?/c+dir HTTP/1.0" 302 231 "-" "-"
>
>www.adifferentsite.com 66.12.10.51 - - [18/Sep/2001:06:51:16 -0700] "GET
>/scripts/..%c1%9c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 302 254 "-" "-"


This one is going to be ugly...I have been hit 6500 times in the last 4 
hours.  I am getting about 50 a minute....

ARRGGHH!

_________________________________________________________________
Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp

_______________________________________________
cobalt-users mailing list
cobalt-users@xxxxxxxxxxxxxxx
To Subscribe or Unsubscribe, please go to:
http://list.cobalt.com/mailman/listinfo/cobalt-users



The information contained in this e-mail is strictly confidential and for the intended use of the addressee only; it may also be legally privileged and/or price sensitive.  Notice is hereby given that any disclosure, use or copying of the information by anyone other than the intended recipient is prohibited and may be illegal.  If you have received this message in error, please notify the sender immediately by return e-mail.

Corporate Systems, Inc. has taken every reasonable precaution to ensure that any attachment to this e-mail has been swept for viruses.  We accept no liability for any damage sustained as a result of software viruses and advise you carry out your own virus checks before opening any attachment.

Follow-Ups:
- RE: [cobalt-users] C drive hack - news article
  - From: MikeM
- Re: [cobalt-users] C drive hack
  - From: Oliver Schlag
- RE: [cobalt-users] C drive hack
  - From: flash22

Prev by Date: [cobalt-users] Qube 2 firewall/restore CD problems
Next by Date: Re: [cobalt-users] Qube 2 Cron Daemon reports error with secureweb
Previous by thread: RE: [cobalt-users] C drive hack
Next by thread: RE: [cobalt-users] C drive hack - news article

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index