-BEGIN PGP SIGNED MESSAGE-
__
SGI Security Advisory
Title: Apache Web Server Chunk Handling vulnerability
Number: 20020605-01-I
Date: July 12, 2002
Re
In Hosting Controller 2002, it is possible to change the password of any
user, Administrator.
To exploit this, one would have to:
Add a user (/accounts/getuserdesc.asp)
Edit the user, changing the password (/accounts/updateuserdesc.asp)
Then using something like the @stake web proxy, c
Patch is now availible from apple:
http://download.info.apple.com/Mac_OS_X/061-0074.20020712/2z/SecurityUpdate7-12-02.dmg.bin
includes crypto sigs on packages.
__
WEB.DE MyPage - Ohne Computerkenntnisse in nur 5 Minuten o
