Author Archive
Apache Exploit Published
June 20, 2002
If you still haven’t patched your Apache web server to protect against the chunked-encoding vulnerability released on Monday, now’s the time. “Gobbles Security” group has published an exploit called apache-scalp on BugTraq that gets a remote shell on Apache 1.3.X. The hack only works on OpenBSD but expect more exploits for other platforms soon. Once […]
New Apache Versions Fix Security Hole
June 19, 2002
Versions 2.0.39 and 1.3.26 of the Apache web server have been released, both of which fix the remote vulnerability uncovered yesterday. Here are the revelant links: Binaries and Source Version 1.3.x changelog Version 2.0.x changelog
More on the Apache Vulnerability
June 18, 2002
CERT has issued advisory CA-2002-17 covering the remote DoS and code execution security hole in Apache web servers, which run 56% of the Internet’s web sites according to the latest Netcraft survey. Numerous reactions to the vulnerability, particularly the way ISS disclosed it before notifying the Apache organization, have been sprouting up all over the […]
« Older Entries Newer Entries »
