> Vulnerabilities were reported to Jasig about the legacy Yale mod_cas filter > and the CCCI ISAPI filter.
Where can we get further information on the nature of these vulnerabilities? We have both of these in production and would like as much information as possible, which would hopefully allow us to decide for ourselves whether we could mitigate vulnerabilities instead of upgrade. I will of course +1 your recommendation to upgrade, but giving folks an option would be best. M -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-dev
