Hi,
by accident I found the following in my very reduced Apache SSL Error logs:
```
[Thu Sep 05 02:35:53 2019] [error] [client xxx.xxx.xxx.xxx] Invalid URI
in request GET
/dana-na/../dana/html5acc/guacamole/../../../../../../../etc/hosts?/dana/html5acc/guacamole/
HTTP/1.1
```
The thing is, I do not host Guacamole to the public internet, neither on
this machine.
I just wanted to inform the list, that it might be the case that someone
found a vulnerability in Guacamole and tries to find public vulnerable
servers.
I am also interested in any information regarding this log entry.
Kind regards
Peter
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
