Home page logo
/

fulldisclosure logo Full Disclosure mailing list archives

Re: Apache 1.3.29
From: <bart2k () hushmail com>
Date: Fri, 12 Mar 2004 07:10:34 -0800



On Thu, 11 Mar 2004 12:38:02 -0800 VeNoMouS <venom () gen-x co nz> wrote:
any one know if theres a new exploit for apache 1.3.29 in the wild
one of my mates boxes was breached this morning by ir4dex appears
they gained axx via apache then got root via mmap()

Only one I have seen is for "Apache for Cygwin" version 2.0.48 and prior
which was for directory traversal on Feb 24 2004



Concerned about your privacy? Follow this link to get
FREE encrypted email: https://www.hushmail.com/?l=2

Free, ultra-private instant messaging with Hush Messenger
https://www.hushmail.com/services.php?subloc=messenger&l=434

Promote security and make money with the Hushmail Affiliate Program: 
https://www.hushmail.com/about.php?subloc=affiliate&l=427

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]