Re: Apache Exploit

From: Randy Taylor (rtaylor@enterasys.com)
Date: 06/20/02


Date: Thu, 20 Jun 2002 14:31:25 -0400
To: Blue Boar <BlueBoar@thievco.com>, Stefan Esser <sesser@php.net>
From: Randy Taylor <rtaylor@enterasys.com>

At 09:48 AM 6/20/2002 -0700, Blue Boar wrote:
>Stefan Esser wrote:
>>i heard several people looking at the gobbles exploit and believing it
>>can only be fake:
>
>I can't tell if you are trying to say that you think it works or it
>doesn't. For the record, Gobbles' exploit does work.
>
> BB

Yep it works. Not only that, but preliminary indications are that those OS'es
not specifically supported in the GOBBLES 'sploit can be DOS'ed by it.
I've totally hosed RH Linux and FreeBSD boxen with it so far. More carnage to
come - film at 11.

Best regards,

Randy Taylor
Enterasys Networks
R&D
Dragon Team



Relevant Pages