More of my sites

WinInfo Daily News
SuperSite for Windows
Windows IT Pro Magazine
Connected Home
Thurrott Dot Com
Windows Weekly at TWIT

About this site

For six years, the Internet Nexus served as my technology blog, but I've since started blogging at the SuperSite Blog instead. If you're looking for the blog, please head there. --Paul



Thursday, December 09, 2004

Apple web hole still open

TechWorld:
Apple has still not properly fixed the HFS+ filesystem named fork vulnerability discovered last week, according to the company that first noticed it, NetSec.

The fix put out by the company at the end of last week will only address the security flaw for OS X systems running the Apache web server which is shipped by default. Customers using other web servers such as 4D WebSTAR remain vulnerable the managed security specialist has claimed.

In addition, those running modified versions of the Apache web server on OS X would not have received the update patch automatically, but would not necessarily realise this. The vulnerability risks allowing attackers to exploit URLs to gain access to back-end data structures and carry out website defacement or information theft.
[ Posted at 8:12 AM | Permalink ]

 

Nexus Home | Nexus Archives | Email Paul
Copyright © 2001-2008 Paul Thurrott. All Rights Reserved.