|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Auriemma Luigi (kaino3
GENIE.IT)Date: Sun Apr 15 2001 - 17:44:38 CDT
I have forgotten the most important effect of the bug.
Apache don't register the attacker's request in the log files
(access and error DON'T report the string, the error or other information
about the event). This is very useful for the attacker for run remote
commands or open idle connections without the danger of be logged.
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]