Speeple News Search

Sign Up! | Tags | Domains | Statistics | Options | Advanced Search

Exploit code published for Apache Tomcat flaw

zdnet.com » 2008 » August » 23rd » Exploit code published for Apache Tomcat flaw

Tagged: privacy, open source, malware, hackers, passwords, phishing, anti virus, data theft, vulnerability research, exploit code, zero day attacks, responsible disclosure, pen testing, patch watch, denial of service dos, arbitrary code execution, complex attacks, locally running web servers

The United States Computer Emergency Response Team (US-CERT) has raised an alarm for a serious vulnerability in Apache Tomcat, warning that a proof-of-concept exploit is publicly available. The code, posted to Milw0rm.com, exploits a directory traversal vulnerability vulnerability in the way Apache Tomcat handles malformed requests. From the advisory: If a context is configured with Continue Reading »

Latest news from Zero Day:

  1. Microsoft is 5th most spam-friendly ISP
  2. Verizon snoops peek at Obama’s cell phone records
  3. iPhone update kills 12 security bugs
  4. Under worm attack, US Army bans USB drives
  5. What does the spam ISP shutdown really mean?

Latest news from zdnet.com:

  1. When to spend cash in a SaaS business
  2. No drama, Obama? Sounds dramatic to me...
  3. Can savior-elect resurrect General Motors?
  4. Ulteo offers server based computing solution for Linux desktops, apps
  5. Can open source sustain a talent agency?