Apache Chunked encoding vulnerability CAN-2002-0392
(Last modified: 31Jul2003)
This document (10072204) is provided subject to the disclaimer at the end of this document.
fact
Novell NetWare 6.0
Apache for NetWare 1.3.20a
Apache for NetWare 1.3.26
symptom
Apache Chunked encoding vulnerability CAN-2002-0392
CERT Advisory CA-2002-17 Apache Web Server Chunk Handling Vulnerability
fix
This has been fixed and is found in Apache version 1.3.26. This version can be found at: http://www.apache.org/dist/httpd/binaries/netware/apache_1.3.26_netware-up.zip. This is also scheduled to be in Support Pack 2 for NetWare 6.0.
Further chunked vulnerability issues with Apache on NetWare are resolved by using Apache 1.3.27 which is applied when SP3 is applied.
document
| Document Title: | Apache Chunked encoding vulnerability CAN-2002-0392 |
| Document ID: | 10072204 |
| Solution ID: | NOVL80659 |
| Creation Date: | 28Jun2002 |
| Modified Date: | 31Jul2003 |
| Novell Product Class: | NetWare Web Services |
disclaimer
The Origin of this information may be internal or external to Novell. Novell makes all reasonable efforts to verify this information. However, the information provided in this document is for your information only. Novell makes no explicit or implied claims to the validity of this information.
Any trademarks referenced in this document are the property of their respective owners. Consult your product manuals for complete trademark information.