[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] HTTP request with SMTP message

To: "Tiago Halm" <thalm@netcabo.pt>
Subject: Re: [Full-Disclosure] HTTP request with SMTP message
From: "Volker Tanger" <volker.tanger@discon.de>
Date: Mon, 24 Nov 2003 18:05:28 +0100

Greetings!

On Mon, 24 Nov 2003 16:25:30 -0000 "Tiago Halm" <thalm@netcabo.pt>
wrote:

> It's not the first time, but I gave up trying to figure it out.
> My IIS (port 80) received this HTTP request from x.x.x.x.
> 
> POST http://x.x.x.x:25/ HTTP/1.1

They try to abuse your IIS as SMTP relay, hoping it works as proxy, too
- similar to  http://www.securityfocus.com/bid/4131/

Bye

Volker Tanger
ITK-Security

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

References:
- [Full-Disclosure] HTTP request with SMTP message
  - From: "Tiago Halm" <thalm@netcabo.pt>

Prev by Date: [Full-Disclosure] HTTP request with SMTP message
Next by Date: Re: [Full-Disclosure] HTTP request with SMTP message
Previous by thread: [Full-Disclosure] HTTP request with SMTP message
Next by thread: Re: [Full-Disclosure] HTTP request with SMTP message
Index(es):
- Date
- Thread