General discussion

Locked

Buffer overflow "attack"?

By TechStop ·
I'm still learning security, so please forgive if this is a "stupid" question---and feel free to refer me to the appropriate place for RTFM on this.

I spotted this in my log files:
Apr 28 05:34:45 myhost rpc.statd[807]: gethostbyname error for ^X???^X???^Z???^Z???
%8x%8x%8x%8x%8x%8x%8x%8x%8x%62716x%hn%51859x%hn\220\220\220\220\220\220\220\220\...[the \220 just repeats for dozens of lines].

I'm also noticing periodically that I get e-mails with many unprintable characters, and no message associated. Sometimes, though, these unprintable characters appear throughout the e-mail, interspersed with HTML tags.

Are these instances of people sending from countries that use a different character set? Or attempts to cause some kindof panic, buffer overflow or gain shell access?

Thanks, in advance, for any advice!

This conversation is currently closed to new comments.

Thread display: Collapse - | Expand +

All Comments

Collapse -

Buffer overflow "attack"?

by nikki96 In reply to Buffer overflow "attack"?

It is indeed an attack in your logs.

http://www.discordia.ch/About/

The e-mail however, is more than likely other countries.

Nikki

Collapse -

Buffer overflow "attack"?

by TechStop In reply to Buffer overflow "attack"?

Sorry it took me so long to rate this. Somehow, I didn't realize the answer had been posted. Must've missed my e-mail notification.

Collapse -

Buffer overflow "attack"?

by TechStop In reply to Buffer overflow "attack"?

This question was closed by the author

Related Discussions

Related Forums