commons-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Rajat Sharma" <rsha...@airvananet.com>
Subject How to overcome htpasswd local buffer overflow ??
Date Mon, 10 Oct 2005 20:45:36 GMT
Hi Folks,

I have this issue coming in from the security auditors on my server running Apache Webserver.
How can I overcome this ? 

Vulnerability found on port 9090

The remote host appears to be running a version of Apache which is older than 1.3.32. 

There is a local buffer overflow in htpasswd command in this version, 
which may allow a local user to gain the privileges of the httpd process. 

Regards,
Raj

---------------------------------------------------------------------
To unsubscribe, e-mail: commons-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: commons-user-help@jakarta.apache.org


Mime
View raw message