[Xitami] combat against cmd.exe

Robert J. DeMartini xitami@lists.xitami.org
Sun, 30 Jun 2002 03:04:28 -0700

Previous message: [Xitami] FYI: running vanilla (console) Xitami as a service
Next message: [Xitami] PHP bug
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hello,

I'm interested to know what others are doing with Xitami to combat against
this outside attack:

/scripts/..%5c../winnt/system32/ cmd.exe
/scripts/..%5c../winnt/ system32/cmd.exe?/c+dir

and this:

/scripts/..%5c../httpodbc.dll

Shows up in my log files often. I'm assuming this is a NT vulnerability?
Since I'm not running NT it's a fruitless attack but am concerned about
other attacks I may encounter in the future and want to know if there is
built in precautions.

Thanks,

Rob

Previous message: [Xitami] FYI: running vanilla (console) Xitami as a service
Next message: [Xitami] PHP bug
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]