What HTTP exploit?

North American Network Operators Group

What HTTP exploit?

From: John Palmer (NANOG Acct)
Date: Sun May 30 16:51:57 2004

Can anyone identify this http exploit? Seen in the apache logs:

foo.bar.com
 - - [30/May/2004:02:45:28 -0400] "SEARCH /\x90\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\
x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb
1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\
xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1

etc - and it goes on for about 1200 bytes.

Been getting an annoying number of these in my httpd logs today - it botches up my log analyser program.

Follow-Ups:
- Re: What HTTP exploit? Richard Welty
- Re: What HTTP exploit? Matthew McGehrin
- RE: What HTTP exploit? Todd Mitchell - lists

Prev by Date: Re: Cable networks RE: best effort has economic problems, maybe OT
Next by Date: RE: What HTTP exploit?
Date Index
Thread Index
Author Index
Historical