Is TimeTrex vulnerable to critical log4j exploit?

Topics brought up by the TimeTrex open source community.
Post Reply
KEW
Posts: 4
Joined: Wed Apr 06, 2011 11:28 pm

Is TimeTrex vulnerable to critical log4j exploit?

Post by KEW »

Hello,

You would have probably heard of the very recent log4j exploit, that has a CVSS score of 10. TimeTrex uses the Apache Web server, so I was wondering whether or not TimeTrex was vulnerable to this exploit?

Thanks..!
shaunw
Posts: 7839
Joined: Tue Sep 19, 2006 2:22 pm

Re: Is TimeTrex vulnerable to critical log4j exploit?

Post by shaunw »

Apache is a foundation that manages over 350 separate projects. Apache web server is one which TimeTrex does use as its web server, and Log4j is completely separate project for the Java programming language which TimeTrex does not use. Therefore vulnerabilities in Log4j do not affect TimeTrex whatsoever.
KEW
Posts: 4
Joined: Wed Apr 06, 2011 11:28 pm

Re: Is TimeTrex vulnerable to critical log4j exploit?

Post by KEW »

Many Thanks :)
Post Reply