Spam my blog and I report your site to Google for banning. You've been warned!

« Mickey Mouse operations | Main | Spam hunting -> spamhuntress.com »

March 03, 2005

Watch out for unpatched awstats

I got an entry in my error log today.

Someone had tried to access the awstats script in the cgi-bin. Only there's no awstats script in the cgi-bin.

The explanation is that older versions of the scripts are vulnerable.

Shame on you, hacker:
200.162.230.111

Posted by Ann at March 3, 2005 08:18 PM

Trackback Pings

TrackBack URL for this entry:
http://www.annelisabeth.com/blog/mt-tb.cgi/272

Comments

Got the same thing myself over the past few weeks.

Following being the latest.....

2005-03-02 18:27:40 80.237.203.15 - 80 GET /cgi-bin/awstats/awstats.pl configdir=|%20id%20| 404 Mozilla/4.0+(compatible;+MSIE+6.0;+Windows+98) -
2005-03-02 18:27:40 80.237.203.15 - 80 GET /cgi-bin/awstats.pl configdir=|%20id%20| 404 Mozilla/4.0+(compatible;+MSIE+6.0;+Windows+98) -
2005-03-02 18:27:40 80.237.203.15 - 80 GET /cgi/awstats.pl configdir=|%20id%20| 404 Mozilla/4.0+(compatible;+MSIE+6.0;+Windows+98) -
2005-03-02 18:27:41 80.237.203.15 - 80 GET /Default.asp - 200 Mozilla/4.0+(compatible;+MSIE+6.0;+Windows+98)

Posted by: Steven at March 4, 2005 07:44 PM

The requested page could not be found.

include(/home/annelisa/public_html/blog/refer/refer.php) [function.include]: failed to open stream: No such file or directory