[TriLUG] AWStats 6.2
Rick DeNatale
rick.denatale at gmail.com
Mon Jan 31 13:44:59 EST 2005
Hmmm,
What were your symptoms. I've been running 6.2 but haven't used it in
a while. When I tried to access it to check on the version I'm now
getting a 403 error, and I haven't figured out why.
On Sun, 30 Jan 2005 21:59:48 -0500, David Rasch <rasch at raschnet.com> wrote:
> A heads up to anyone running AWStats on a web server: There's a remote
> execution vulnerability in version 6.2 by which an attacker can gain
> privileges of your web server (usually an unprivileged user).
>
> Details here:
> http://xforce.iss.net/xforce/xfdb/18910
>
> Make sure to upgrade before it's too late.
>
> -David (was too late)
> --
> TriLUG mailing list : http://www.trilug.org/mailman/listinfo/trilug
> TriLUG Organizational FAQ : http://trilug.org/faq/
> TriLUG Member Services FAQ : http://members.trilug.org/services_faq/
> TriLUG PGP Keyring : http://trilug.org/~chrish/trilug.asc
>
More information about the TriLUG
mailing list