Vulnerability in Apache 1.3.26/OpenSSL 0.9.6e: Resolved in Urchin 4.102r2

Urchin 4 ships with an Apache webserver. For Urchin releases 4.004 through 4.101, the Apache webserver was version 1.3.26 mod_ssl/2.8.10 OpenSSL/0.9.6e. Several vulnerabilities in this version of Apache and OpenSSL have been disclosed.

In response, Urchin Software Corporation released Urchin 4.101r2 on October 16, 2002 which includes Apache 1.3.27 mod_ssl/2.8.11 OpenSSL/0.9.6g. This version of Apache/OpenSSL addresses the vulnerabilities.

All customers are strongly encouraged to upgrade to Urchin 4.101r2 or later for this reason.