Date: Sat, 4 Aug 2001 11:47:23 -0600 From: "Brad Morgan" <B-Morgan@concentric.net> Cc: <questions@FreeBSD.ORG> Subject: RE: Attempted Buffer Overrun in via httpd? Message-ID: <NABBJOOEOFODEALNMJAJOEBOEDAA.B-Morgan@concentric.net> In-Reply-To: <E15T5RI-000B0V-00@jdl.com>
next in thread | previous in thread | raw e-mail | index | archive | help
I'm seeing the same thing. If its Code Red, it looks like it took a few days to get rolling. -----Original Message----- From: owner-freebsd-questions@FreeBSD.ORG [mailto:owner-freebsd-questions@FreeBSD.ORG]On Behalf Of Jon Loeliger Sent: Saturday, August 04, 2001 11:42 AM To: Fernando Gleiser Cc: questions@FreeBSD.ORG Subject: Re: Attempted Buffer Overrun in via httpd? So, like Fernando Gleiser was saying to me just the other day: > > It smells like code red. It is a worm which tries to exploit a vulnerability > in M$ IIS. Ah! Duh. Wait, I'm catching up here... What's the current virus knocking on everyone's door? Oh yeah, _I_ remember now! Code Red. > Apache (AFAIK) is not vulnerable. Excellent. > The request comes from an infected machine, maybe you want to inform the > webmaster about this. Heh. If I were to do that, I'd do _nothing_ else! I have hundreds of them, and they are mostly from various dial-up looking DNS names. Ugh. Thanks for the info!, jdl To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?NABBJOOEOFODEALNMJAJOEBOEDAA.B-Morgan>