WampServer
Apache, PHP, MySQL
on Windows
Apache 2.2.11 Vulnerability fixed in 2.2.12
Posted by:
Wonsil
(---.hsd1.mi.comcast.net)
Date: August 09, 2009 01:05AM
From Secunia:
A vulnerability has been reported in Apache, which can be exploited by malicious people to disclose sensitive information.
The vulnerability is caused due to an error in mod_proxy_ajp when handling improperly formed POST requests. This can be exploited to disclose response data associated with the request of a different user via specially crafted HTTP requests.
The vulnerability is reported in version 2.2.11.
Fixed in 2.2.12. Any thoughts on when 2.2.12 will be included in WAMPServer?
A vulnerability has been reported in Apache, which can be exploited by malicious people to disclose sensitive information.
The vulnerability is caused due to an error in mod_proxy_ajp when handling improperly formed POST requests. This can be exploited to disclose response data associated with the request of a different user via specially crafted HTTP requests.
The vulnerability is reported in version 2.2.11.
Fixed in 2.2.12. Any thoughts on when 2.2.12 will be included in WAMPServer?
Re: Apache 2.2.11 Vulnerability fixed in 2.2.12
Posted by:
c2dan
(---.15-1.cable.virginmedia.com)
Date: August 09, 2009 11:50AM
It will only affect people using the mod_proxy_ajp module. Which is not enabled by default.
Sorry, only registered users may post in this forum.
