[Gllug] Apache REMOTE ROOT exploit

Thom May thom at positive-internet.com
Fri Jun 21 09:37:01 UTC 2002


As this hasn't been posted, and not everyone on here follows all the
security lists (I guess) the hole found in Apache and Apache2 a few days ago
has now been confirmed to be remotely exploitable to gain root under Linux
(32bit _and_ 64bit platforms), OpenBSD, FreeBSD and Solaris(x86 + Sparc).
it is strongly suggested that anyone running apache should upgrade to
1.3.26/2.0.39 at the earliest possible time.
Cheers,
-Thom


-- 
Gllug mailing list  -  Gllug at linux.co.uk
http://list.ftech.net/mailman/listinfo/gllug




More information about the GLLUG mailing list