[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] Apache 1.3.29

To: full-disclosure@xxxxxxxxxxxxxxxx
Subject: Re: [Full-Disclosure] Apache 1.3.29
From: d4rkgr3y <d4rk@xxxxxxxxxxxxxx>
Date: Fri, 12 Mar 2004 07:48:05 +0300

> They might have used an apache user discosure bug that allows you to check
> user names vs. passwords.. I think it's made by w00w00. It will check the
> user names and passes, if it finds one that works it will login via FTP to
> make sure.
It's made by me and you can find it on m00.void.ru/release.html


>   ----- Original Message -----
>   From: VeNoMouS
>   To: full-disclosure@xxxxxxxxxxxxxxxx
>   Sent: Thursday, March 11, 2004 2:38 PM
>   Subject: [Full-Disclosure] Apache 1.3.29
>
>
>   any one know if theres a new exploit for apache 1.3.29 in the wild one of
> my mates boxes was breached this morning by ir4dex appears they gained axx
> via apache then got root via mmap()
I could hardly imagine that such exploit code is realy exist. I think that 
your server was hacked via vulnerability in additional apache mods. Like 
mod_ssl, mod_php, mod_gzip, mod_python, etc.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Follow-Ups:
- Re: [Full-Disclosure] Apache 1.3.29
  - From: Jarrod SMith

References:
- [Full-Disclosure] Apache 1.3.29
  - From: VeNoMouS
- Re: [Full-Disclosure] Apache 1.3.29
  - From: Jarrod SMith

Prev by Date: Re: [Full-Disclosure] Apache 1.3.29
Next by Date: [Full-Disclosure] Re: Norton AntiVirus 2002 fails to scan files with ... [2'nd... UPDATED]
Previous by thread: Re: [Full-Disclosure] Apache 1.3.29
Next by thread: Re: [Full-Disclosure] Apache 1.3.29
Index(es):
- Date
- Thread