Cotygodniowe dziury 22 VII 2002
Blues
blues at ds6.pg.gda.pl
Mon Jul 22 10:31:15 CEST 2002
W dniu święta 22 lipca kolejna porcja dziur :) i chyba ze względu na
święto jest tego niedużo :)
Rozwiązanie: upgrade do nowszej wersji.
7. World Wide Web Offline Explorer (WWWOFFLE)
Vendor: Bishop, Andrew M.
A buffer overflow vulnerability was reported in the World Wide
Web Offline Explorer (WWWOFFLE). A remote user may be able to
execute arbitrary code on the HTTP/FTP proxy server.
Impact: Execution of arbitrary code via network
Alert: http://securitytracker.com/alerts/2002/Jul/1004798.html
Kolejna dziura w resinie (coś dużo ich...):
11. Resin
Vendor: Caucho Technology
KPMG reported an information disclosure vulnerability in
Caucho's Resin web server. A remote user can determine the
physical path of the web root directory.
Impact: Disclosure of system information
Alert: http://securitytracker.com/alerts/2002/Jul/1004792.html
To jest rozwiązane w .36
24. Apache
Vendor: Apache Software Foundation
An information disclosure vulnerability was reported in the
Apache Web Server version 2.0. A remote user could determine the
installation path of the CGI script.
Impact: Disclosure of system information
Alert: http://securitytracker.com/alerts/2002/Jul/1004770.html
--
---------------------------------
pozdr. Paweł Gołaszewski
---------------------------------
CPU not found - software emulation...
More information about the pld-devel-pl
mailing list