Date: Sun, 26 Jan 1997 00:19:00 -0800 From: Ulf Zimmermann <ulf@Alameda.net> To: Christian Hochhold <expert@dusk.net>, freebsd-isp@FreeBSD.ORG Subject: Re: possible phf exploit? Message-ID: <3.0.32.19970126001859.00b2f434@Gatekeeper-3.Lamb.net>
next in thread | raw e-mail | index | archive | help
This an old thing. I am getting serveral hits per month, trying that. Ulf. At 03:43 AM 1/26/97 -0400, Christian Hochhold wrote: >Evenin' > >While checking my access logs I came across a few very interesting >things.. someone trying to get to the passwd file through pfh. >The logs showed the attempted access as being in the following format: > >/cgi-bin/phf/Q?alias=x%ff/bin/cat%20/etc/passwd > >I don't run phf (nor have I checked it out per say), however >to someone who does know/use phf this might prove interesting. > >Comments? =) > >Christian > > ----------------------------------------------------------- Alameda Networks, Inc. | Ulf Zimmermann (ulf@Alameda.net) 1525 Pacific Avenue | Phone: (510)769-2936 Alameda, CA 94501 | Fax : (510)521-5073
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3.0.32.19970126001859.00b2f434>