Date: Wed, 7 Jul 2004 11:10:00 -0700 From: Joe Hamelin <nethead@gmail.com> To: freebsd-isp@freebsd.org Subject: Apache 1.3.x proxy hole Message-ID: <79db6ae04070711106e9f2e35@mail.gmail.com>
next in thread | raw e-mail | index | archive | help
Techworld is reporting that: "The bug affects Apache 1.3.x installations configured to act as proxy servers, which relay requests between a Web browser and the Internet. When a vulnerable server connects to a malicious site, a specially-crafted packet can be used to exploit the vulnerability, according to security researcher Georgi Guninski, who has publicly released exploit code." http://bsdnews.com/view_story.php3?story_id=4628 http://www.techworld.com/opsys/news/index.cfm?newsid=1814&page=1&pagepos=2 Does anyone know of a FreeBSD patch for this out yet? -- Joe Hamelin Edmonds, WA, US
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?79db6ae04070711106e9f2e35>