RE: [htdig] Htdig vulnerability

Tue, 22 Feb 2005 08:48:50 -0800 

I noticed the link has a dot in the end and it caused problem.

This one should work:
http://securitytracker.com/alerts/2005/Feb/1013078.html

Anyone knows which version is not affected? Any patches?

Thanks!

Wang

> -----Original Message-----
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] Behalf Of ywang
> Sent: Monday, February 21, 2005 4:52 PM
> To: [email protected]
> Subject: [htdig] Htdig vulnerability
> 
> 
> Hello,
> 
> According to Security Tracker, htdig has input validation 
> hole that allows cross-site scripting attacks:
> http://securitytracker.com/alerts/2005/Feb/1013078.html. 
> 
> At the bottom of the page, I can see Gentoo, RadHat, and 
> Debian has issued fixes to their htdig releases. We are using 
> the one directly from htdig.org. But I cannot see any updates 
> or patches from Htdig's own website. Any information 
> regarding this issue? 
> 
> Thanks!
> 
> Wang
> 
> 
> 
> 
> 
> -------------------------------------------------------
> SF email is sponsored by - The IT Product Guide
> Read honest & candid reviews on hundreds of IT Products from 
> real users.
> Discover which products truly live up to the hype. Start reading now.
> http://ads.osdn.com/?ad_ide95&alloc_id396&op=ick
> _______________________________________________
> ht://Dig general mailing list: <[email protected]>
> ht://Dig FAQ: http://htdig.sourceforge.net/FAQ.html
> List information (subscribe/unsubscribe, etc.)
> https://lists.sourceforge.net/lists/listinfo/htdig-general
> 
> 



-------------------------------------------------------
SF email is sponsored by - The IT Product Guide
Read honest & candid reviews on hundreds of IT Products from real users.
Discover which products truly live up to the hype. Start reading now.
http://ads.osdn.com/?ad_ide95&alloc_id396&op=click
_______________________________________________
ht://Dig general mailing list: <[email protected]>
ht://Dig FAQ: http://htdig.sourceforge.net/FAQ.html
List information (subscribe/unsubscribe, etc.)
https://lists.sourceforge.net/lists/listinfo/htdig-general

Reply via email to