Re: CGI security hole in EWS (Excite for Web Servers)

carson@tla.org
Thu, 18 Dec 1997 20:09:36 -0500

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Crispin Cowan: "StackGuard: Automatic Protection From Stack-smashing Attacks"
Previous message: Paul Wilson: "Re: mIRC Worm"
Maybe in reply to: Marc Merlin: "CGI security hole in EWS (Excite for Web Servers)"

The _really_ funny thing is that EWS 1.0P1 does _not_ appear to be
vulnerable. It looks like someone who shouldn't have been let near the
code decided to "enhance" it.

--
Carson Gaspar -- carson@cs.columbia.edu carson@tla.org carson@cugc.org
http://www.cs.columbia.edu/~carson/home.html
Queen Trapped in a Butch Body

Next message: Crispin Cowan: "StackGuard: Automatic Protection From Stack-smashing Attacks"
Previous message: Paul Wilson: "Re: mIRC Worm"
Maybe in reply to: Marc Merlin: "CGI security hole in EWS (Excite for Web Servers)"