Re: [cobalt-security] Apache worm that uses the chunk vulnerability - in the wild

Subject: Re: [cobalt-security] Apache worm that uses the chunk vulnerability - in the wild
From: Paul Jacobs <paul@xxxxxxxxxxxxxxxxxx>
Date: Fri, 28 Jun 2002 15:49:59 -0700
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

At 03:14 PM 6/28/2002, you wrote:

Domas Mituzkas just reported that he found the sourcecode:

http://dammit.lt/apache-worm/apache-worm.c

Normally I don't post spoilers of this sort, but special times, specialmeans.

So although it has NOT yet been officially  announced: The updated Apache
PKGs for some Cobalts have been uploaded to the Cobalt FTP server:

I read through the code and I would think this worm would work for anywebserver not just apache... but that is not the case....

What other BIG problems does apache have that we don't know about?.

Everyone complains about all the holes in IIS, but that's because microsofttells us about them... apache should do the same thing!

References:
- [cobalt-security] Apache worm that uses the chunk vulnerability - in the wild
  - From: Rick Ewart
- Re: [cobalt-security] Apache worm that uses the chunk vulnerability - in the wild
  - From: Michael Stauber

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index