Vulnerability Scanning Solutions, LLC.
Our Process
What We Scan For
Sample Report
Client List
Contact Us
What We Scan For
Family: Ubuntu Local Security Checks --> Category: infos

USN23-1 : apache2 vulnerability Vulnerability Scan

Vulnerability Scan Summary
apache2 vulnerability

Detailed Explanation for this Vulnerability Test

Synopsis :

These remote packages are missing security patches :
- apache2
- apache2-common
- apache2-doc
- apache2-mpm-perchild
- apache2-mpm-prefork
- apache2-mpm-threadpool
- apache2-mpm-worker
- apache2-prefork-dev
- apache2-threaded-dev
- libapr0
- libapr0-dev

Description :

Chintan Trivedi discovered a Denial of Service vulnerability in
apache2. The field length limit was not enforced for certain malicious
requests. This could allow a remote attacker who is able to send large
amounts of data to a server to cause HTTP server instances to consume
proportional amounts of memory, which can render the service

Solution :

Upgrade to :
- apache2-2.0.50-12ubuntu4.1 (Ubuntu 4.10)
- apache2-common-2.0.50-12ubuntu4.1 (Ubuntu 4.10)
- apache2-doc-2.0.50-12ubuntu4.1 (Ubuntu 4.10)
- apache2-mpm-perchild-2.0.50-12ubuntu4.1 (Ubuntu 4.10)
- apache2-mpm-prefork-2.0.50-12ubuntu4.1 (Ubuntu 4.10)
- apache2-mpm-threadpool-2.0.50-12ubuntu4.1 (Ubuntu 4.10)
- apache2-mpm-worker-2.0.50-12ubuntu4.1 (Ubuntu 4.10)
- apache2-prefork-dev-2.0.50-12ubuntu4.1 (Ubuntu 4.10)
- apache2-threaded-dev-2.0.50-12ubuntu4.1 (Ubuntu 4.10)
- libapr0-2.0.50-12ubun

Threat Level: High

Click HERE for more information and discussions on this network vulnerability scan.


P.O. Box 827051

Pembroke Pines, FL 33082-7051

Vulnerability Scanning Solutions, LLC.