Cotygodniowe dziury 22 VII 2002
Blues
blues w ds6.pg.gda.pl
Pon, 22 Lip 2002, 10:31:15 CEST
W dniu święta 22 lipca kolejna porcja dziur :) i chyba ze względu na
święto jest tego niedużo :)
Rozwiązanie: upgrade do nowszej wersji.
7. World Wide Web Offline Explorer (WWWOFFLE)
Vendor: Bishop, Andrew M.
A buffer overflow vulnerability was reported in the World Wide
Web Offline Explorer (WWWOFFLE). A remote user may be able to
execute arbitrary code on the HTTP/FTP proxy server.
Impact: Execution of arbitrary code via network
Alert: http://securitytracker.com/alerts/2002/Jul/1004798.html
Kolejna dziura w resinie (coś dużo ich...):
11. Resin
Vendor: Caucho Technology
KPMG reported an information disclosure vulnerability in
Caucho's Resin web server. A remote user can determine the
physical path of the web root directory.
Impact: Disclosure of system information
Alert: http://securitytracker.com/alerts/2002/Jul/1004792.html
To jest rozwiązane w .36
24. Apache
Vendor: Apache Software Foundation
An information disclosure vulnerability was reported in the
Apache Web Server version 2.0. A remote user could determine the
installation path of the CGI script.
Impact: Disclosure of system information
Alert: http://securitytracker.com/alerts/2002/Jul/1004770.html
--
---------------------------------
pozdr. Paweł Gołaszewski
---------------------------------
CPU not found - software emulation...
Więcej informacji o liście dyskusyjnej pld-devel-pl