KLA10068
Multiple vulnerabilities in Apache httpd
Обновлено: 17/06/2019
Дата обнаружения
22/07/2013
Уровень угрозы
Warning
Описание

Multiple serious vulnerabilities have been found in Apache httpd. Malicious users can exploit these vulnerabilities to cause denial of service or execute arbitrary commands Below is a complete list of vulnerabilities

  1. An improper DAV restriction vulnerability can be exploited remotely via a specially designed MERGE request;
  2. An improper strings work vulnerability can be exploited remotely via a specially designed HTTP request.
Пораженные продукты

Apache httpd 2.2 versions 2.2.24 and earlier

Решение

Update to latest version

Первичный источник обнаружения
Apache changelog
Оказываемое влияние
?
ACE 
[?]

OSI 
[?]

DoS 
[?]

SB 
[?]

PE 
[?]
Связанные продукты
Apache HTTP Server
CVE-IDS