[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] New awstats.pl vulnerability?

To: Lamar Spells <lamar.spells@xxxxxxxxx>
Subject: Re: [Full-disclosure] New awstats.pl vulnerability?
From: Bruce Ediger <bediger@xxxxxxxxxxxxxx>
Date: Mon, 12 Dec 2011 22:30:31 -0700 (MST)

On Mon, 12 Dec 2011, Lamar Spells wrote:

> For the past several days, I have been seeing thousands of requests
> looking for awstats.pl like this one:

Yeah, me too.  They just started up.  I haven't seen any awstats.pl
requests since 2010-05-18, and now I've gotten batches of them, since
about 2011-11-22, but heavier since the start of December.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Follow-Ups:
- Re: [Full-disclosure] New awstats.pl vulnerability?
  - From: Nikolay Kichukov

References:
- [Full-disclosure] New awstats.pl vulnerability?
  - From: Lamar Spells

Prev by Date: Re: [Full-disclosure] Fwd: VSFTPD Remote Heap Overrun (low severity)
Next by Date: Re: [Full-disclosure] New awstats.pl vulnerability?
Previous by thread: Re: [Full-disclosure] New awstats.pl vulnerability?
Next by thread: Re: [Full-disclosure] New awstats.pl vulnerability?
Index(es):
- Date
- Thread