[Phpwm] Apache DoS vulnerability
Martin Meredith
martin at sourceguru.net
Thu Aug 25 13:31:11 UTC 2011
Nice little command there David.
Dan, the one with the 206 is vulnerable.
Luckily- I spent the morning patching...
HTTP/1.1 403 Forbidden
Date: Thu, 25 Aug 2011 13:30:22 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 20
Connection: close
Content-Type: text/html; charset=iso-8859-1
(weirdly enough, it only actually responds 1 out of 10 times?)
On 25/08/11 10:01, Dan Dart wrote:
> So I get a 400 on the work mac (presumably incompatible options), a
> 301 on my main server (I suppose it would help if I hit its actual
> domain name to which it's 301ing me to?) and a 206 on my home server
> with a content-length of 279291...
>
> _______________________________________________
> Phpwm mailing list
> Website : http://www.phpwm.org
> Twitter : http://www.twitter.com/phpwm
> Facebook: http://www.facebook.com/group.php?gid=2361609907
>
> Post to list: Phpwm at mailman.lug.org.uk
> Archive etc : https://mailman.lug.org.uk/mailman/listinfo/phpwm
More information about the Phpwm
mailing list