Hi there, Stefan Fritsch wrote: > A vulnerability has been found in twiki. See > http://twiki.org/cgi-bin/view/Codev/SecurityAlert-CVE-2006-6071 for > details.
Just for the sake of detail, your site may be vulnerable if: 1. If you have ErrorDocument 401 set to point to the TWikiRegistration topic (or any other TWiki topic) and 2. You are using ApacheLogin with TWiki-4.0 and have sessions enabled, or you are using an earlier TWiki version with SessionPlugin, and 3. You are running Apache 1.3 -- ยท''`. If I can't dance to it, it's not my revolution : :' : -- Emma Goldman `. `' Proudly running Debian GNU/Linux (unstable) `- www.amayita.com www.malapecora.com www.chicasduras.com
