www.google.com reference in directory-traversal attack

From: sgt_b (sgt_b2002at_private)
Date: Mon Jul 14 2003 - 10:35:36 PDT

Next message: Sergey Latkin: "Re: more info on a hopefully unsuccessful compromise"

Previous message: Harlan Carvey: "Re: more info on a hopefully unsuccessful compromise"
Next in thread: Sam Baskinger: "Re: www.google.com reference in directory-traversal attack"
Reply: Sam Baskinger: "Re: www.google.com reference in directory-traversal attack"
Reply: Chris Ess: "Re: www.google.com reference in directory-traversal attack"
Reply: David Gillett: "RE: www.google.com reference in directory-traversal attack"
Reply: Paul Dokas: "Re: www.google.com reference in directory-traversal attack"
Reply: Jason Falciola: "Re: www.google.com reference in directory-traversal attack"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

('binary' encoding is not supported, stored as-is) I've included a link to a tcpdump taken that shows a standard IIS directory-traversal attack. I was looking over the packets and noticed a reference to www.google.com. Could someone take a look, and let me know what this is being used for? http://12.208.102.165/attack3.dump atack3.dump=1.6kb Thanks! ---------------------------------------------------------------------------- Attend the Black Hat Briefings & Training, July 28 - 31 in Las Vegas, the world's premier technical IT security event! 10 tracks, 15 training sessions, 1,800 delegates from 30 nations including all of the top experts, from CSO's to "underground" security specialists. See for yourself what the buzz is about! Early-bird registration ends July 3. This event will sell out. www.blackhat.com ----------------------------------------------------------------------------

Next message: Sergey Latkin: "Re: more info on a hopefully unsuccessful compromise"
Previous message: Harlan Carvey: "Re: more info on a hopefully unsuccessful compromise"
Next in thread: Sam Baskinger: "Re: www.google.com reference in directory-traversal attack"
Reply: Sam Baskinger: "Re: www.google.com reference in directory-traversal attack"
Reply: Chris Ess: "Re: www.google.com reference in directory-traversal attack"
Reply: David Gillett: "RE: www.google.com reference in directory-traversal attack"
Reply: Paul Dokas: "Re: www.google.com reference in directory-traversal attack"
Reply: Jason Falciola: "Re: www.google.com reference in directory-traversal attack"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Mon Jul 14 2003 - 13:27:59 PDT