Notified:  April 08, 2002 Updated: April 11, 2002

Status

Affected

Vendor Statement

Apache has released versions 1.3.24 and 2.0.34-beta that address this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

The CERT/CC has verified this vulnerability on Apache 1.3.23 running on Windows 2000.