Re: Rumours about Apache 1.3.22 exploits -> analysis of so-called exploit client

From: Manuel Bouyer (bouyerat_private)
Date: Thu Mar 07 2002 - 11:54:25 PST

Next message: zeno: "Re: Problems in Apache 1.3.22"

Previous message: Dan Hanson: "Re: SSH2 Exploit?"
In reply to: Sean Davis: "Re: Rumours about Apache 1.3.22 exploits -> analysis of so-called exploit client"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, Mar 07, 2002 at 02:50:00PM -0500, Sean Davis wrote:
> I think the vulnerability in question is in PHP. Is the version of PHP4 in
> NetBSD pkgsrc fixed? I've disabled php in apache since I don't use it much
> anyway, but I'd feel a lot better about re-enabling it if I knew it was no
> longer an issue.

Yes, pkgsrc has been fixed by the update to 4.1.2

-- 
Manuel Bouyer <bouyerat_private>
--

Next message: zeno: "Re: Problems in Apache 1.3.22"
Previous message: Dan Hanson: "Re: SSH2 Exploit?"
In reply to: Sean Davis: "Re: Rumours about Apache 1.3.22 exploits -> analysis of so-called exploit client"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Mar 08 2002 - 03:39:07 PST