Strange "SEARCH" request in Apache logs

Forum Moderators: DixonJones

Message Too Old, No Replies

Strange "SEARCH" request in Apache logs

apache access log strange request

in1t

5:28 pm on Oct 28, 2003 (gmt 0)

I have this strange request in my apache web logs. Does anyone know what this is?


80.8.146.34 - - [27/Oct/2003:21:48:55 -0700] "SEARCH /\x90\x02\xb1\x02\xb1\x02\x
b1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\x
b1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\x
b1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1
(... repeats a lot of hex code)

pendanticist

7:51 pm on Oct 31, 2003 (gmt 0)

Welcome to WebmasterWorld :)

While I don't know the answer to this question, how's about a little bump....

Pendanticist.

daisho

1:17 am on Nov 20, 2003 (gmt 0)

I just found some like this also in my log. Is this something can can effect Apache or is it a IIS think?

[added]This seems to be an exploit for WebDev. In apache if you are running mod_dav then you may want to ensure your protected. In my case I do not so I didn't look into in any further. Apache's mod_dav may not be vulnerable but you may want to confirm[/added]