Security Advisories
New Apache Versions Fix Security Hole
June 19, 2002
Versions 2.0.39 and 1.3.26 of the Apache web server have been released, both of which fix the remote vulnerability uncovered yesterday. Here are the revelant links: Binaries and Source Version 1.3.x changelog Version 2.0.x changelog
More on the Apache Vulnerability
June 18, 2002
CERT has issued advisory CA-2002-17 covering the remote DoS and code execution security hole in Apache web servers, which run 56% of the Internet’s web sites according to the latest Netcraft survey. Numerous reactions to the vulnerability, particularly the way ISS disclosed it before notifying the Apache organization, have been sprouting up all over the […]
Remote Apache Vulnerability Announced
June 17, 2002
A remote vulnerability has been discovered in the Apache HTTP server, versions up to 1.3.24 and 2.0 through 2.0.36 for both Windows and *nix. The hole is in routines which deal with invalid requests encoded using chunked encoding, which is enabled by default. A maliciously crafted request could lead to denial of service or possibly […]
« Older Entries Newer Entries »
