PDA

Archiv verlassen und diese Seite im Standarddesign anzeigen : Debian Security Advisory 2452-1



newsbot
17.04.2012, 02:11
Debian Linux Security Advisory 2452-1 - Niels Heinen noticed a security issue with the default Apache configuration on Debian if certain scripting modules like mod_php or mod_rivet are installed. The problem arises because the directory /usr/share/doc, which is mapped to the URL /doc, may contain example scripts that can be executed by requests to this URL. Although access to the URL /doc is restricted to connections from localhost, this still creates security issues in two specific configurations.

Weiterlesen... (http://packetstormsecurity.org/files/111866/dsa-2452-1.txt)