httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Knute Johnson <apa...@knutejohnson.com>
Subject [users@httpd] Exploit?
Date Mon, 19 Nov 2012 02:39:58 GMT
  A total of 2 possible successful probes were detected (the following 
URLs contain strings that match one or more of a listing of strings that
  indicate a possible exploit):

     /?mod=../../../../../../../../proc/self/environ%00 HTTP Response 200
     /?page=../../../../../../../../proc/self/environ%00 HTTP Response 200


Above showed up in my log this morning.  Anybody know what the exploit
could be and how one can prevent this?

Thanks,

knute...

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message