ZWS Online Support

Documentation errata

Site Admin [Administrator] — Thu, 20 May 2010 09:54:43 +0000

This article contains any documentation errata and omissions. Read more...

ZWS 4.3r5 released

Site Admin [Administrator] — Wed, 13 Jan 2010 17:01:55 +0000

Zeus Web Server version 4.3r5 was released on Wednesday 13th January 2010 via customers' download pages and for evaluation. Read more...

ZWS: selected platforms - end-of-life announcement

Site Admin [Administrator] — Mon, 10 Dec 2007 00:00:00 +0000

From 10th June 2008, Zeus will no longer support Zeus Web Server (ZWS) on several platforms. Customers who are operating ZWS on an affected platform will be fully supported for the remainder of their support contract, and will receive full support to transfer their software to an alternative platform if they wish to do so. Read more...

ZWS 4.3r4 released

Crispin Flowerday [Zeus Dev Team] — Mon, 30 Jul 2007 10:17:25 +0000

ZWS 4.3r4 was released on Monday 30th July 2007 via customers' download pages and for evaluation.

Location HTTP header injection vulnerability

Owen Garrett [Zeus Dev Team] — Thu, 15 Feb 2007 15:09:28 +0000

On February 14th, an advisory posted on BugTraq (bugtraq, InfoHacking) described two ways to inject data into HTTP responses using a crafted request.

The "Error response arbitrary injection" method is not applicable to Zeus Web Server.
The "Location HTTP header injection" affects Zeus Web Server. A number of other web servers, including Apache and IIS, can also be provoked in this way.

This article discusses the advisory as it pertains to Zeus Web Server, and assesses how it may be exploited to provoke undesired behaviour. Read more...