Quarter byte squaw?

Worryingly, many sysadmins seemed unaware both of the Apache 'chunked encoding' bug and of their systems' vulnerability...

This month has seen the elevation of what was thought merely to have been a minor DoS on a limited set of platforms running Apache to a remote-shell exploit on a large number. Worryingly, many sysadmins seem unaware both of the 'chunked encoding' bug and of their systems' vulnerability: a quick search demonstrated that at least three major AV vendors are (at the time of writing) running older versions of Apache that are potentially at risk. Modification of executables to contain malicious code, defaced websites, and red-faced sysadmins seem likely to become the order of the day

01 July 2002

Tags: virus del.icio.us digg this

Latest news

Virus Bulletin announces new anti-spam certification scheme

Independent security testing body to certify anti-spam products. (2 comments)
08 January 2009

Texan firm sues whole security world

Swathe of major security providers cited in patent infringement case.
06 January 2009

UK to adopt Euro police hacking scheme

Remote search and cyber patrol plans approved.
06 January 2009

Twitter hit by phishing and hacks

Popular micro-blog site latest target of link spammers.
06 January 2009

CastleCops closes down

Security community project comes to an end.
06 January 2009

rss virus news feed

javascript virus news feed

News Archive

See also

Calendar of Events

Polls

Poll

Who in your company is responsible for installing software patches?

Leave a comment

Jobs Career Sidebar

Jobs

In Virus Bulletin's jobs pages among others:

Senior Malware Researcher (Beaverton/Hillsboro Oregon, United States)
Malware Analyst (Gaithersburg, MD OR Denver, CO, United States)

Virus Bulletin currently has 148,295 registered users.