Vulnerability Development mailing list archives

Re: Rumours about Apache 1.3.22 exploits -> analysis of so-called exploit client

From: Manuel Bouyer <bouyer () antioche eu org>
Date: Thu, 7 Mar 2002 20:54:25 +0100

On Thu, Mar 07, 2002 at 02:50:00PM -0500, Sean Davis wrote:

I think the vulnerability in question is in PHP. Is the version of PHP4 in
NetBSD pkgsrc fixed? I've disabled php in apache since I don't use it much
anyway, but I'd feel a lot better about re-enabling it if I knew it was no
longer an issue.


Yes, pkgsrc has been fixed by the update to 4.1.2

-- 
Manuel Bouyer <bouyer () antioche eu org>
--

Current thread:

Re: Rumours about Apache 1.3.22 exploits, (continued)
- Re: Rumours about Apache 1.3.22 exploits Erik Tayler (Mar 05)
- Re: Rumours about Apache 1.3.22 exploits Charles 'core' Stevenson (Mar 05)
- Re: Rumours about Apache 1.3.22 exploits nilton . gs . sc (Mar 05)
  - Re: Rumours about Apache 1.3.22 exploits adamb (Mar 06)
    - Re: Rumours about Apache 1.3.22 exploits Richard Hamnett (Mar 06)
    - Re: Rumours about Apache 1.3.22 exploits Vanja Hrustic (Mar 06)
    - Re: Rumours about Apache 1.3.22 exploits -> analysis of so-called exploit client adamb (Mar 06)
    - Re: Rumours about Apache 1.3.22 exploits -> analysis of so-called exploit client Sean Davis (Mar 06)
    - Re: Rumours about Apache 1.3.22 exploits -> analysis of so-called exploit client Manuel Bouyer (Mar 08)
    - Re: Rumours about Apache 1.3.22 exploits -> analysis of so-called exploit client Sean Davis (Mar 07)
    - Re: Rumours about Apache 1.3.22 exploits -> analysis of so-called exploit client Manuel Bouyer (Mar 08)
- RE: Rumours about Apache 1.3.22 exploits Knud Erik Hojgaard (Mar 07)
  - RE: Rumours about Apache 1.3.22 exploits Benjamin Morin (Mar 07)
- RE: Rumours about Apache 1.3.22 exploits Mike Tone (Mar 08)
  - strange win2k behavior hotx (Mar 09)
    - Re: strange win2k behavior Felix Domke (Mar 09)