A nice bird told me zen-parse has coded an exploit for apache... Seems all versions,including 1.3.23 are exploitable... But it seems zen-parse didn't distributed the exploit or it's very private... But someone else could already have another working one... If one can do it, someone else can do it too... Bind 9.2.x exploit is done for quite a while.... Not good news :) I don't have yet details where the problems are :( >Only ones i've seen are trojans. > >You heard anything different ? At 12:12 a.m. 24/02/02 -0000, you wrote: >There are rumours about an exploit for apache 1.3.22 at least... Don't >have yet details on it... Anyone else heard about it ? > > >
This archive was generated by hypermail 2b30 : Mon Feb 25 2002 - 17:54:50 PST