GET /&&DI=293&IG=3041d98c92884fa7aa7e9e8ee12b11b0&POS=5&
Wizcrafts
6:08 pm on Jan 10, 2006 (gmt 0)
Today I found this GET string across all of the websites I own or manage: GET /&&DI=293&IG=3041d98c92884fa7aa7e9e8ee12b11b0&POS=5&CM=WPU&CE=5&CS=AWP&SR=5
Is this a known attack vector? If so, what is it's desired result? The attacker got 404s on every attempt, on all websites.
Thanks, Wiz
jdMorgan
4:38 pm on Jan 11, 2006 (gmt 0)
It looks like a badly-written bot or a "nuisance" request to me.
If it got a 404 response, then there's nothing to worry about.
