Re: Another flaw in Apache?

From: Filipe Jorge Marques de Almeida (filipeat_private)
Date: Sun Jun 23 2002 - 07:03:13 PDT

Next message: Jedi/Sector One: "Re: Another flaw in Apache?"

Previous message: Syzop: "Apache vulnerability checking"
In reply to: Michal Zalewski: "Re: Another flaw in Apache?"
Next in thread: Jedi/Sector One: "Re: Another flaw in Apache?"
Next in thread: Jedi/Sector One: "Re: Another flaw in Apache?"
Reply: Jedi/Sector One: "Re: Another flaw in Apache?"
Reply: Michal Zalewski: "Re: Another flaw in Apache?"
Reply: sd: "Re: Another flaw in Apache?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Don't forget this is not a serious vulnerability in many configurations (if the
user already has permission to run cgi scripts without suexec, SSI, etc).

On Sat, Jun 22, 2002 at 09:27:48PM -0400, Michal Zalewski wrote:
> Check out what you get - file descriptors and other goodies - and perhaps
> it is a good time to cc: bugtraq or at least Apache guys?;-)

--
Filipe Almeida

Next message: Jedi/Sector One: "Re: Another flaw in Apache?"
Previous message: Syzop: "Apache vulnerability checking"
In reply to: Michal Zalewski: "Re: Another flaw in Apache?"
Next in thread: Jedi/Sector One: "Re: Another flaw in Apache?"
Next in thread: Jedi/Sector One: "Re: Another flaw in Apache?"
Reply: Jedi/Sector One: "Re: Another flaw in Apache?"
Reply: Michal Zalewski: "Re: Another flaw in Apache?"
Reply: sd: "Re: Another flaw in Apache?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Sun Jun 23 2002 - 08:56:11 PDT