Threat level definition
Search:
Home
Bugtraq
Vulnerabilities
Mailing Lists
Jobs
Tools
Beta Programs
News
Infocus
Foundations
Microsoft
Unix
IDS
Incidents
Virus
Pen-Test
Firewalls
Columnists
Mailing Lists
Newsletters
Bugtraq
Focus on IDS
Focus on Linux
Focus on Microsoft
Forensics
Pen-test
Security Basics
Vuln Dev
Vulnerabilities
Jobs
Job Opportunities
Resumes
Job Seekers
Employers
Tools
RSS
News
Vulns
Security Research
BugTraq
Back to list
|
Post reply
Re: Pi3Web 2.0.1 DoS
May 30 2003 09:51AM
Holger Zimmermann (zimpel users sourceforge net)
In-Reply-To: <Law8-F81nLOyDc41W2u00004bb6 (at) hotmail (dot) com [email concealed]>
The problem was related to an additional PathInfo="Yes"
parameter in the PathMapper object for the WebRoot
mapping in version 2.0.1.
There is patch available for a longer time, which fixes
this issue in the administration client :
http://sourceforge.net/tracker/download.php?group_id=17753&atid=317753&f
ile_id=47258&aid=718552
Note, that a related issue has been reported for the unix
version of Pi3Web 2.0.1:
http://www.securityfocus.com/archive/1/321177
http://www.securityfocus.com/bid/7555
Follow the information posted there in order to fix the
problem in the configuration.
[ reply ]
Privacy Statement
Copyright 2009, SecurityFocus
The problem was related to an additional PathInfo="Yes"
parameter in the PathMapper object for the WebRoot
mapping in version 2.0.1.
There is patch available for a longer time, which fixes
this issue in the administration client :
http://sourceforge.net/tracker/download.php?group_id=17753&atid=317753&f
ile_id=47258&aid=718552
Note, that a related issue has been reported for the unix
version of Pi3Web 2.0.1:
http://www.securityfocus.com/archive/1/321177
http://www.securityfocus.com/bid/7555
Follow the information posted there in order to fix the
problem in the configuration.
[ reply ]