TwojePC.pl © 2001 - 2024
|
|
A R C H I W A L N A W I A D O M O Ś Ć |
|
|
|
HTTP_ActivePerl_Overflow? , konraf 17/01/04 11:50 Witam
Od kilku dni NIS 2004 bardzo czesto informuje mnie o jakiejs "aktywnosci" w postaci HTTP_ActivePerl_Overflow.
Co to za cholerstwo?Bartek
www.aztec.pl
konraf@aztec.pl - Proszę bardzo: , Marcinex 17/01/04 13:55
HTTP_ActivePerl_Overflow
Severity: Medium
This attack could pose a moderate security threat. It does not require immediate action.
Attack Category: Suspicious Activity
Anomalous network conditions or traffic patterns. A suspicious activity signature, for example, might detect two systems with identical IP addresses, a condition that indicates an attempted IP spoofing attack.
Description
Older versions of ActivePerl on Windows have a buffer overflow vulnerability. An attacker can exploit this vulnerability to execute arbitrary code at the privilege level of the Web server process. This signature detects attempts to exploit the ActivePerl vulnerability through HTTP.
Vulnerable Components
Activestate ActivePerl Version 5.6.1.629 and earlier on Windows
False Positive
This signature may not indicate malicious intent if ActivePerl versions other than those listed above are used or ActivePerl is not used at all. In this case, you can exclude this signature from monitoring.Nie ma piekła poza tym światem, on nim
jest, nie ma diabła poza człowiekiem,
on nim jest! |
|
|
|
|
All rights reserved ® Copyright and Design 2001-2024, TwojePC.PL |
|
|
|
|