From: Renison, Rick (rick.renison@EDS.COM)
Date: Tue Jun 18 2002 - 08:10:20 EDT
The CERT mentions that IBM will update to Apache 1.3.23 shortly and will be
available at
http://www-1.ibm.com/servers/aix/products/aixos/linux/download.
<http://www-1.ibm.com/servers/aix/products/aixos/linux/download.html> html
So far there is nothing..... not ready yet.
...Rick
-----Original Message-----
From: Stamper, Steve [mailto:sstamper@FOREMOST.COM]
Sent: June 18, 2002 07:38
To: aix-l@Princeton.EDU
Subject: CERT Advisory and HTTPServer
Do to some application requirements, we must run IBM HTTPServer (
http://www-3.ibm.com/software/webservers/httpservers/
<http://www-3.ibm.com/software/webservers/httpservers/> ) on some of our AIX
systems. CERT has just released a vulnerability (
http://httpd.apache.org/info/security_bulletin_20020617.txt
<http://httpd.apache.org/info/security_bulletin_20020617.txt> for Apache -
which HTTPServer is based upon. I have been to IBM's site and they make no
mention of HTTPServer having this vulnerability. Does anyone know where/how
I can research?
**Disclaimer**
This memo and any attachments may be confidential and legally privileged.
If you are not the intended recipient and have received this in error,
kindly destroy this message and notify the sender.
Thank you for your assistance.
This archive was generated by hypermail 2.1.7 : Wed Apr 09 2008 - 22:16:00 EDT