info-global
[Top][All Lists]
Advanced

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

GLOBAL Security Advisory


From: Shigio Yamaguchi
Subject: GLOBAL Security Advisory
Date: Sun, 31 Mar 2002 02:28:06 +0900

Hello hackers,

A security hole was found in CGI program generaged by htags(1).
Please understand current situation and take a measures to meet
the situation.

[The versions which include security hole]

        The following version include the security hole.

        GLOBAL-3.5, 3.51, 3.52, 3.53, 3.54, 3.55, 4.0,
                4.0.1, 4.1, 4.1.1, 4.2, 4.3, 4.3.1. 

If you use above version and use the -f option of htags(1),
please stop publishing hypertext generated by htags(1) and
replace your GLOBAL with the fixed version 4.4.

[The contents of the security hole]

        Almost commands are world-executable by form if you publish
        the hypertext generated by htags with the -f option.

If you have some questions, please mail to me (address@hidden).
Thank you for your cooporation.
--
Shigio Yamaguchi - Tama Communications Corporation




reply via email to

[Prev in Thread] Current Thread [Next in Thread]