Vulnerability Development mailing list archives
RE: Rumours about Apache 1.3.22 exploits
From: Spare Cycles <cycles () fromru com>
Date: Tue, 26 Feb 2002 21:38:48 +0300 (MSK)
I've got an oldish apache (1.3.9, but without the directory index, negotiation, and rewrite engine that have all had security problems) and a not so old PHP module: 4.0.3pl1 and I decided to check my logs carefully after reading about this exploit rumor. I notice this in the error.log: [Mon Feb 25 13:51:38 2002] [error] PHP Warning: No content-type in POST request in Unknown on line 0 [Mon Feb 25 13:51:38 2002] [notice] child pid 4699 exit signal Segmentation fault (11) There is nothing about any POSTs in my access log for that time.
Current thread:
- Rumours about Apache 1.3.22 exploits Pedro Hugo (Feb 24)
- Re: Rumours about Apache 1.3.22 exploits nilton . gs . sc (Feb 25)
- RE: Rumours about Apache 1.3.22 exploits Pedro Hugo (Feb 25)
- RE: Rumours about Apache 1.3.22 exploits Nico Wieland (Feb 26)
- RE: Rumours about Apache 1.3.22 exploits Pedro Hugo (Feb 25)
- Re: Rumours about Apache 1.3.22 exploits H D Moore (Feb 25)
- php update (was Re: Rumours about Apache 1.3.22 exploits) Christopher McCrory (Feb 27)
- Re: Rumours about Apache 1.3.22 exploits Brandon (Feb 25)
- <Possible follow-ups>
- RE: Rumours about Apache 1.3.22 exploits Pedro Hugo (Feb 25)
- Re: Rumours about Apache 1.3.22 exploits Mike Tone (Feb 26)
- RE: Rumours about Apache 1.3.22 exploits Spare Cycles (Feb 27)
- Re: Rumours about Apache 1.3.22 exploits Olaf Kirch (Feb 27)
- Re: Rumours about Apache 1.3.22 exploits H D Moore (Feb 27)
- Re: Rumours about Apache 1.3.22 exploits nilton . gs . sc (Feb 25)