On TV.com: TOP 10 Shows CANCELED Too Soon
BNET Business Network:
BNET
TechRepublic
ZDNet
TalkBack 20 of 65:
Next »
« Previous
Uh huh...
"The Apache Software Foundation has released a patch for its Apache 2.0 HTTP Server to thwart a "significant" denial-of-service vulnerability.
Apache, which makes the popular open-source Web server application, released version 2.0.45 to fix a denial-of-service (DoS) problem. A DoS attack floods a network with data, rendering it inaccessible to legitimate queries."

" ESecurityplanet.com has reported that the Apache software, which is used by about 60 percent of Web servers, is being actively attacked on the Internet. The Apache HTTP Server Project warns of open holes in many installed versions of Apache and urgently recommends that admins upgrade to version 1.3.27 or 2.0.43 or later, which were still the latest versions available as of mid-November."

"An Internetnews.com report published on October 4, 2002, said that version 1.3.27 patched three key vulnerabilities. One hole is found in all versions of Apache prior to 1.3.27 on "platforms using System V shared memory based scoreboards." That vulnerability can cause a denial of service event. Another flaw relates to cross-site scripting in the default 404 page, while the third vulnerability that's repaired in this 1.3.27 bug-fix release was a buffer overflow threat."

"The new version of the software patches several serious vulnerabilities, including one that could allow vandals to crash a server by sending malicious commands to the component Apache uses to execute WebDAV (World Wide Web Distributed Authoring and Versioning) instructions. WebDAV is a set of extensions to the basic HTTP (Hypertext Transfer Protocol) underlying the Web, enabling sites to handle more advanced Web services functions."
Posted by: No_Ax_to_Grind   Posted on: 12/04/03 You are currently: a Guest | Members login | Terms of Use
Reply to Story Reply to Message

Alert moderator to an offensive message

Subscribe to this discussion via Email or RSS

Hacked Linux?  Octol | 12/04/03
Nothing like a little schadenfreude...  frgough@... | 12/04/03
What's the matter?  John Dulles | 12/04/03
what medicine?  ryusen | 12/04/03
Hmmm . . . SCO maybe ?  meveridge_z | 12/06/03
pst  stephen732@... | 12/04/03
It was the "admin's" fault...  GRindinAxTaRupy | 12/04/03
Unknown my foot  John Dulles | 12/04/03
puma ignoramus  nikoli | 12/04/03
Did you smoke ...  dopeshow | 12/04/03
Re: Hacked Linux?  Martin Marvinski | 12/04/03
reputable linux user?  nikoli | 12/04/03
really?  ryusen | 12/04/03
sorry  engel000 | 12/05/03
Hacked Linux? Yes  Clete2 | 12/09/03
oops  Clete2 | 12/09/03
It was an evil M$ spell  theraven_z | 06/27/05
The bigger the target...  No_Ax_to_Grind | 12/04/03
Then why isn't apache hacked...  GRindinAxTaRupy | 12/04/03
Uh huh...  No_Ax_to_Grind | 12/04/03
m$ #1  stephen732@... | 12/04/03
Gentoo runs Windows????  No_Ax_to_Grind | 12/04/03
Then what...  GRindinAxTaRupy | 12/04/03
You certainly are something "GRindinAxTaRupy"  toadlife | 12/04/03
Yes, Linux has vunerabilities.  nucrash | 12/04/03
Re: Yes, Linux has vunerabilities.  Martin Marvinski | 12/04/03
Missed the point of that post  GRindinAxTaRupy | 12/04/03
That doesn't surprise anyone...  No_Ax_to_Grind | 12/04/03
Gee Bit..thought condescending snotty replies...  GRindinAxTaRupy | 12/04/03
For my coat tail riders I make an exception.  No_Ax_to_Grind | 12/04/03
No credible argument?  toadlife | 12/04/03
How many bugs in IIS  jasonp@... | 12/04/03
What a sad excuse.  dopeshow | 12/04/03
As i said before:  ryusen | 12/04/03
Yes!  John Le'Brecage | 12/04/03
Correction...  John Le'Brecage | 12/04/03
Had to be the Administrator, its not an OS issue  FilledOut | 12/04/03
More than likely..  vdraken | 12/04/03
Yes, it is the rsync!  dopeshow | 12/04/03
Never had a need to.  vdraken | 12/04/03
Linux being hacked  crocd | 12/04/03
Because they can.  vdraken | 12/04/03
usually though,  ryusen | 12/04/03
It's because  John Dulles | 12/04/03
Yes indeed...  No_Ax_to_Grind | 12/04/03
Yes indeed  GRindinAxTaRupy | 12/04/03
Not sure of the #'s  Suicida| | 12/07/03
cheap thrill  crocd | 12/04/03
Vulnerable Linux vs. Multi-Billion $$$ MS Antics  michael-t | 12/04/03
Don't blame us, the other guy is worse?  No_Ax_to_Grind | 12/04/03
don't usually agree with you but...  nikoli | 12/04/03
Correction Needed?  michael-t | 12/04/03
Best Practice = Best Answer  michael-t | 12/04/03
compromised to a LESSER degree than Linux...  toadlife | 12/04/03
*BSD is Unix  michael-t | 12/04/03
Rearrange  Yagotta B. Kidding | 12/04/03
It is impossible  michael-t | 12/04/03
Nitpick all you want but  toadlife | 12/04/03
Unix vs *BSD vs Linux  michael-t | 12/04/03
Be fair  Rokstar83 | 12/05/03
The Ultimate Security Tool  nucrash | 12/04/03
Interesting Point  michael-t | 12/04/03
So is OS X Server now the only....  mlindl | 12/05/03
michael-t  noShut_z | 12/05/03
Thanks  michael-t | 12/05/03

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

advertisement
advertisement

Enterprise Applications

  • Check out some of the easiest and most powerful ways to boost productivity while saving money on your application infrastructure. See ZDNet's comprehensive Enterprise Application resource center, now!
  • New Online Dashboard
  • Read about top issues IT decision-makers face every day, plus get cost effective solutions to real life IT problems. Oracle Topline