apache 1.3.36 vulnerability found / 1.3.37 update?

aww · Aug 1, 2006

There was an annoucement today about Apache 1.3.36 where an attacker can
exploit mod_rewrite

http://www.kb.cert.org/vuls/id/395412
http://www.apache.org/dist/httpd/Announcement1.3.html

(this also affects apache 2)

My sysadmin say they are waiting for a patch from cpanel.

AndyReed · Aug 2, 2006

aww said:
There was an annoucement today about Apache 1.3.36 where an attacker can
exploit mod_rewrite

http://www.kb.cert.org/vuls/id/395412
http://www.apache.org/dist/httpd/Announcement1.3.html

(this also affects apache 2)

This issue was posted a few days ago on these forums. Hipe the cPanel team will release an upgrade soon.

chirpy · Aug 2, 2006

Subject is already being discussed in another thread.

Thread starter	Similar threads	Forum	Replies	Date
E	Enable the apache errorlog to show the real source IP	Web Servers and Applications	4	Sep 21, 2023
M	Apache won't restart	Web Servers and Applications	2	Sep 19, 2023
R	ea-apache24 conflicts with httpd-2.4.6-99.el7.centos.1.x86_64	Web Servers and Applications	3	Sep 8, 2023
	Server Compromised: Apache or PHP vulnerability	Web Servers and Applications	6	Sep 6, 2006
S	New Apache Vulnerability	Web Servers and Applications	19	Jul 29, 2006

Search

Search

apache 1.3.36 vulnerability found / 1.3.37 update?

aww

Well-Known Member

AndyReed

Well-Known Member

chirpy

Well-Known Member