[stalk:01010] Re: Nimda $B46@w<T$+$i$NJQ$J%"%/%;(B$B%9(B

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[stalk:01010] Re: Nimda $B46@w

To: security-talk@xxxxxxxxxxxxxxxxxxxx
Subject: [stalk:01010] Re: Nimda $B46@w
From: Delta <ml@xxxxxxxxxx>
Date: Wed, 21 Nov 2001 09:30:01 +0900

(B
(B
$B$3$s$K$A$O!"%G%k%?$G$9!#(B
(B
(BOn Tue, 20 Nov 2001 08:40:16 +0900 (JST)
(BHIRAMOTO Kouji <hiramoto@xxxxxxxxxxx> wrote:
(B
(B>   $B$3$l$N@5BN$O2?$J$s$G$7$g$&$+(B?
(B> 
(B> 203.141.XXX.XXX - - [20/Nov/2001:08:32:08 +0900] "GET /scripts/root.exe?/c+dir HTTP/1.0" 404 282
(B> 203.141.XXX.XXX - - [20/Nov/2001:08:32:16 +0900] "GET /MSADC/root.exe?/c+dir HTTP/1.0" 404 280
(B
(B
$B!!$?$^$K$3$s$J%Q%?!<%s$N$bMh$^$9!#(B
(B
$B!&!&!&(B/scripts/..%c0%qf../winnt/system32/cmd.exe?/c+dir
$B!&!&!&(B/scripts/..%c0%9v../winnt/system32/cmd.exe?/c+dir
$B!&!&!&(B/scripts/..%c1%pc../winnt/system32/cmd.exe?/c+dir
(B
$B!!%&%$%k%9$N%P%0$J$N$+!"46@wCf$K%3%T!<$K<:GT$7$?$N$+!"$A$g$C$HFf$G$9$M!#(B
$BHf3SE*Dj4|E*$K!"$=$7$F%o%s%;%C%H$GMh$k$N$G!"http://books.rakuten.co.jp/infoseek/?svx=971122

Follow-Ups:
- [stalk:01021] Re: Nimda $B46@w
  - From: Shikap

References:

[stalk:01008] Nimda $B46@w
From: HIRAMOTO Kouji

Prev by Date: [stalk:01009] Re: Nimda $B46@w

Next by Date: [stalk:01011] tripwire $B!!EyF~$l(B$B$F$/$l$k@lMQ%5(B$B!<%P%Y%s%@(B
Previous by thread: [stalk:01009] Re: Nimda $B46@w

Next by thread: [stalk:01021] Re: Nimda $B46@w

Index(es):
- Date
- Thread