Re: CGI Buffer Overflow?

To: debian-security@lists.debian.org
Subject: Re: CGI Buffer Overflow?
From: Graham Hughes <graham@lynda.com>
Date: 19 Jul 2001 16:52:55 -0700
Message-id: <[🔎] 87vgkoxyqw.fsf@lynda.com>
In-reply-to: <[🔎] 3B574E66.9EC27245@brectanu.ais.vt.edu>
References: <[🔎] 3B574E66.9EC27245@brectanu.ais.vt.edu>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Brian Rectanus <brectanu@vt.edu> writes:

> Anyone seen this before?  I have looked around for similar attacks, but
> cannot find any info.  I assume that is a unicode string padded out with
> Ns.  How would I go about finding out what is in the string?

It's the Code Red worm trying to exploit an IIS bug.

<snip shitload of N's>
- -- 
Graham Hughes <graham@lynda.com>
PGP fingerprint: 1F1D 0027 B835 E114 3F5B  2C7C 64D1 83A0 C5C7 312A
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: Processed by Mailcrypt 3.5.6 and Gnu Privacy Guard <http://www.gnupg.org/>

iD8DBQE7V3LTZNGDoMXHMSoRAop0AJ99u77uko7X2vZmef7ovCTDlD2TUwCg3+Fm
oYx3/jDDKP7OsNg5qE8K0+w=
=JGlA
-----END PGP SIGNATURE-----

Reply to:

References:
- CGI Buffer Overflow?
  - From: Brian Rectanus <brectanu@vt.edu>

Prev by Date: Re: CGI Buffer Overflow?
Next by Date: Re: CGI Buffer Overflow?
Previous by thread: Re: CGI Buffer Overflow?
Next by thread: Re: CGI Buffer Overflow?
Index(es):
- Date
- Thread