internetnews.com: Apache Refreshes Web Server Line
Oct 22, 2004, 20:30 (1 Talkback[s])
(Other stories by Sean Michael Kerner)
"The Apache Software Foundation (ASF) has released a new update
to its veritable Apache 1.3.x Web Server line. Apache 1.3.32
includes numerous bug fixes and a critical vulnerability fix.
"The new Web server fixes CAN-2004-0492, a heap-based buffer
overflow that exists in Apache Web Server versions 1.3.25 through
1.3.31. The vulnerability could potentially allow a malicious
remote user to cause a Denial-of-Service attack and potentially
even execute arbitrary code..."