|
|
Family: Debian Local Security Checks --> Category: infos
[DSA187] DSA-187-1 apache Vulnerability Scan
Vulnerability Scan Summary
DSA-187-1 apache
Detailed Explanation for this Vulnerability Test
According to David Wagner, iDEFENSE and the Apache HTTP Server
Project, several remotely exploitable vulnerabilities have been found
in the Apache package, a commonly used webserver. These
vulnerabilities could allow a possible hacker to enact a denial of service
against a server or execute a cross scripting attack. The Common
Vulnerabilities and Exposures (CVE) project identified the following
vulnerabilities:
This is the same vulnerability as CVE-2002-1233, which was fixed in
potato already but got lost later and was never applied upstream.
These problems have been fixed in version 1.3.26-0woody3 for the
current stable distribution (woody) and in 1.3.9-14.3 for the old
stable distribution (potato). Corrected packages for the unstable
distribution (sid) are expected soon.
We recommend that you upgrade your Apache package immediately.
Solution : http://www.debian.org/security/2002/dsa-187
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|
