On Apr 24, 2007, at 11:01 AM, G. Donald Bain wrote:
>Can anyone shed some light on this reported vulnerability on some of
>our Mac servers?
>
>It is listed as CVE-2006-3747, described as "Off-by-one error in the
>ldap scheme handling in the Rewrite module (mod_rewrite) in Apache
>1.3..."
In the message "Re: [MAGNet] vulnerability", dated 4/24/07, Greg Merritt wrote:
>A first read...
>
>http://www.kb.cert.org/vuls/id/395412
Which in turn leads to:
http://www.kb.cert.org/vuls/id/MIMG-6S35G9
>Apple Computer, Inc. Information for VU#395412
>Date Notified 07/25/2006
>Date Modified 10/18/2006 08:52:14 AM
>Status Summary Not Vulnerable
>Vendor Statement
>
>Mac OS X and Mac OS X Server do not contain this vulnerability.
Aron Roberts
Information Services and Technology
------------------------------------------------------------------------
The following was automatically added to this message by the list server:
To learn more about MAGNet, including how to subscribe to or unsubscribe
from its mailing list, please visit the MAGNet Web site:
http://magnet.berkeley.edu/
Received on Tue Apr 24 2007 - 12:18:27 PDT
This archive was generated by hypermail 2.2.0 : Tue Apr 24 2007 - 12:18:28 PDT