[15095] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

E-Serv Security Flaws Fixed

daemon@ATHENA.MIT.EDU (wizdumb@LEET.ORG)
Sun May 28 17:25:26 2000

Message-Id:  <200005261910.VAA32462@syrex.acenet.co.za>
Date:         Wed, 26 May 0100 19:10:51 +0000
Reply-To: wizdumb@LEET.ORG
From: wizdumb@LEET.ORG
X-To:         bugtraq@securityfocus.com
To: BUGTRAQ@SECURITYFOCUS.COM

Hi,

The E-Serv directory transversal vulnerability was fixed some time ago, around
version 2.8 or so. The E-Serv DoS attack as exploited by eservx.java does not
affect the latest version - it has only been tested on E-Serv 2.71 Shareware.

Please upgrade to the latest version at www.eserv.ru - and thanks to the author
of E-Serv for his prompt responses. :)

Cheers,
Andrew Lewis aka. Wizdumb

PS. Fixes for Browsegate, GateKeeper and iCal are still being awaited.
PPS. Please teach your 'vacation' about BugTraq - autoreplies are annoying
:/


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[15095] in bugtraq

E-Serv Security Flaws Fixed

daemon@ATHENA.MIT.EDU (wizdumb@LEET.ORG)Sun May 28 17:25:26 2000

daemon@ATHENA.MIT.EDU (wizdumb@LEET.ORG)
Sun May 28 17:25:26 2000