DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT <http://nagoya.apache.org/bugzilla/show_bug.cgi?id=16423>. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE.
http://nagoya.apache.org/bugzilla/show_bug.cgi?id=16423 TRACE vulnerability Summary: TRACE vulnerability Product: Apache httpd-1.3 Version: 1.3.27 Platform: All OS/Version: All Status: NEW Severity: Major Priority: Other Component: core AssignedTo: [email protected] ReportedBy: [EMAIL PROTECTED] The TRACE command in the HTTP protocol does allow for security problems. As described at http://www.whitehatsec.com/press_releases/WH-PR-20030120.txt Sincce this already is reported at slashdot, I consider it a public problem already and I am therefore reporting it here. --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
