On Wednesday, 2004-01-21 at 22:53:33 -, Steve Grubb wrote:
> Product: mod_perl
> Versions:1.99_09 / apache 2.0.47
> URL: http://perl.apache.org
> Impact: Daemon Hijacking
> Bug class: Leaked Descriptor
> Vendor notified: Yes
> Fix available: No
> Da
.
Isssac
- Original Message -
From: "Stas Bekman" <[EMAIL PROTECTED]>
To: "Lupe Christoph" <[EMAIL PROTECTED]>
Cc: <[EMAIL PROTECTED]>
Sent: Thursday, January 22, 2004 11:26 AM
Subject: Re: FWD: [EMAIL PROTECTED]: Hijacking Apache 2 via mod_perl]
Lupe Christoph wrote:
Hi!
This was on BUGTRAQ last night. Since I've not seen anything from this
guy on the mod_perl mailing list, I thought I'd forward it.
Somebody should reply to BUGTRAQ. Probably that this is an old version,
that people who want to be secure should not use Beta software, and
27;s been fixed for a long time.
I'd be glad to forward a reply, but am hesitant to write something
myself.
Lupe Christoph
- Forwarded message from Steve Grubb <[EMAIL PROTECTED]> -
From: Steve Grubb <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED]
Date: 21 Jan 2004 22:53:33 -
