RE: deafult.ida

  • From: "Jay J. Mobley" <jmobley@xxxxxxxxxx>
  • To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
  • Date: Tue, 11 Sep 2001 08:04:01 -0700

1 of two things.

1. hacker trying to exploit default.ida

2. code red 


-----Original Message-----
From: Martin Smith [mailto:martin.smith@xxxxxxxxxx]
Sent: Tuesday, September 11, 2001 2:41 AM
To: [ISAserver.org Discussion List]
Subject: [isalist] deafult.ida


http://www.ISAserver.org


This has just started to appear within the ISA log files
 
211.217.24.13    anonymous       -           2001-09-08        10:43:51
ISA       -           444.444.444.444            10.10.10.19       80
911       3818     -           http            GET
http://10.10.10.19:80/default.ida?XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX     Inet       10053
 
 
Anyone know what it is
 
Thanks
 
Martin
 

------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
jmobley@xxxxxxxxxx
To unsubscribe send a blank email to $subst('Email.Unsub')

Other related posts:

  1. Home
  2. isalist
  3. Archive
  4. 09-2001