Preface: HTTP GET data contains /...Logo -Internet Security Systems

HTTP GET data contains /...
advICE :Intrusions : 2000618
 FAQ
Oh my gosh, I'm being HACKED!!!
How do I report the hacker to my ISP?
I'm seeing lots of attacks, is this normal?
Summary

The attacker have sent data which contains a suspicious string.

Details

The attacker may be trying to move up the directory tree to access a file in a directory which might otherwise not be accessible. A Web server on a Windows 95/98 system may accept a file name containing a path component of more than 2 dots. This may also be normal harmless data. The value of the URL parameter should be examined to see if it is suspicious.

 more information
BugtraqID: 1777   Hassan Consulting Shopping Cart Directory Traversal Vulnerability
 
BugtraqID: 1776   Bytes Interactive Web Shopper Directory Traversal Vulnerability
 
BugtraqID: 1773   PHPix Directory Traversal Vulnerability
 
BugtraqID: 1626   Worm httpd Directory Traversal Vulnerability
 
BugtraqID: 1537   NAI Net Tools PKI Server Directory Traversal Vulnerability
 
BugtraqID: 1508   SimpleServer WWW Directory Traversal Vulnerability
 
BugtraqID: 1471   Virtual Vision FTP Browser Vulnerability
 
BugtraqID: 1462   Deerfield WorldClient 2.1
 
BugtraqID: 1455   BB4 Technologies Big Brother Directory Traversal Vulnerability
 
BugtraqID: 1243   HP Web JetAdmin Directory Traversal Vulnerability
 
BugtraqID: 1231   MetaProducts Offline Explorer Directory Traversal Vulnerability
 
BugtraqID: 1102   TalentSoft Web+ Directory Traversal Vulnerability
 
BugtraqID: 968   NT IIS idq.dll Directory Traversal Vulnerability
 
BugtraqID: 773   Etype Eserv Directory Traversal Vulnerability
 

 parametric information
URLThe suspicious URL.
accessedIndicates whether the URL was successfully accessed.
codeThe HTTP return code.
argThe argument to the GET command (if any).

 
Version appeared: 1.9
Privacy Policy |  Copyright Info