| ActiveMac | Anonymous | Create a User | Reviews | News | Forums | Advertise |
|
|
|
User Controls |
|
New User |
|
Login |
|
Edit/View My Profile |
|
|
|
|
|
|
|
ActiveMac |
|
Articles |
|
Forums |
|
Links |
|
News |
|
News Search |
|
Reviews |
|
|
|
|
|
|
|
News Centers |
|
Windows/Microsoft |
|
DVD |
|
ActiveHardware |
|
Xbox |
|
MaINTosh |
|
News Search |
|
|
|
|
|
|
|
ANet Chats |
|
The Lobby |
|
Special Events Room |
|
Developer's Lounge |
|
XBox Chat |
|
|
|
|
|
|
|
FAQ's |
|
Windows 98/98 SE |
|
Windows 2000 |
|
Windows Me |
|
Windows "Whistler" XP |
|
Windows CE |
|
Internet Explorer 6 |
|
Internet Explorer 5 |
|
Xbox |
|
DirectX |
|
DVD's |
|
|
|
|
|
|
|
TopTechTips |
|
Registry Tips |
|
Windows 95/98 |
|
Windows 2000 |
|
Internet Explorer 4 |
|
Internet Explorer 5 |
|
Windows NT Tips |
|
Program Tips |
|
Easter Eggs |
|
Hardware |
|
DVD |
|
|
|
|
|
|
|
Latest Reviews |
|
Applications |
|
Microsoft Windows XP Professional |
|
Norton SystemWorks 2002 |
|
|
|
Hardware |
|
Intel Personal Audio Player 3000 |
|
Microsoft Wireless IntelliMouse Explorer |
|
|
|
|
|
|
|
Site News/Info |
|
About This Site |
|
Affiliates |
|
ANet Forums |
|
Contact Us |
|
Default Home Page |
|
Link To Us |
|
Links |
|
Member Pages |
|
Site Search |
|
Awards |
|
|
|
|
|
|
|
Credits |
 |
New Apache flaw adds to Internet woes | |
|
||
| Time: 13:07 EST/18:07 GMT | News Source: ZDNet | Posted By: Robert Stein | ||
|
The Apache flaw could allow an attacker to discover sensitive information or execute malicious code, while the Windows bug makes it possible for users to gain privileges high enough to alter files and user accounts. The Apache flaw affects versions 2.0.39 and earlier, but only affects non-Unix platforms such as Windows, OS2 and Netware. The software can be made to reveal the absolute path to a script whenever the server attempts, and fails, to execute the script. Such path information would give valuable information to a potential attacker. An attacker could also use the flaw to execute programs on the server. | ||
|
Write Comment
Return to News |
Displaying 1 through 25 of 295 Last | Next |
The time now is
1:57:01 PM
ET.
Any comment problems? E-mail us |
| #1 By 135 (209.180.28.6) at 8/20/2002 2:45:13 PM |
| I thought Apache was open source and therefore never had bugs? |
| #2 By 1845 (12.254.162.111) at 8/20/2002 5:08:55 PM |
| No bugs is hyperbole, RANT and Realist. Have you read Eric Raymond, the god of OSS? According to the million eyes theory, it is significantly less likely that open source software will have bugs than closed source software. The fact that this Apache flaw and the recent OpenSSL flaw exist seem to contradict one of the major reasons for open source software - more reliable, less buggy code. |
| #3 By 4209 (163.192.21.2) at 8/20/2002 5:09:41 PM |
| I think the point Soda was trying to make was that when IIS has a bug it is a big deal, but when Apache has one it is quickly dismissed as a fluke. We expect IIS to have bugs so when it does it is one of those "Oh MS screwed up again, why do people use this crap!" comments. Apache or anything Opensource has a bug and no one says a bad thing. I don't hear to many people crabbing about it now. If this was IE or IIS then people would be crabbing up and down. |
| #4 By 135 (208.50.201.48) at 8/20/2002 11:53:51 PM |
|
In other news, KDE finally released a patch for their security problem. Actually took them 3 weeks, not the 90 minutes that was earlier reported.
Ohwell, I guess we're all pretty used to the lies and FUD that OSS advocates use to try to sell their religion. |
| #5 By 7760 (12.155.143.87) at 8/21/2002 9:51:01 PM |
| Boy, a lot of people seem to have difficulty picking up on sarcasm. Nice one, sodablue. |
|
Write Comment
Return to News |
Displaying 1 through 25 of 295 Last | Next |
The time now is
1:57:01 PM
ET.
Any comment problems? E-mail us |
