|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
[sec-adv] Apache HTTP Server Three Security Issues
From: Secunia Security Advisories (sec-adv
secunia.com)
Date: Wed Jul 09 2003 - 07:10:15 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
TITLE:
Apache HTTP Server Three Security Issues
READ ONLINE:
http://www.secunia.com/advisories/9219/
CRITICAL:
Less critical
IMPACT:
Exposure of sensitive information, DoS
WHERE:
From remote
SOFTWARE:
Apache 2.0.x
DESCRIPTION:
Three security issues have been reported in Apache HTTP Server.
Under some circumstances a weak ciphersuite may be used instead of a
strong one, which was intended.
Under some circumstances an error in the prefork MPM
(Multi-Processing Modules) may temporarily cause a DoS (Denial of
Service).
There exists an error in the FTP proxy, which can result in a DoS.
This happens when the host is IPv6 based and the FTP proxy fails to
create a IPv6 socket.
SOLUTION:
Update to version 2.0.47:
http://httpd.apache.org/
REPORTED BY / CREDITS:
Saheed Akhtar (2nd issue)
Yoshioka Tsuneo (3rd issue)
ORIGINAL ADVISORY:
http://www.apache.org/dist/httpd/CHANGES_2.0
----------------------------------------------------------------------
Secunia recommends that you verify all advisories you receive, by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
Contact details:
Web : http://www.secunia.com/
E-mail : supportsecunia.com
Tel : +44 (0) 20 7016 2693
Fax : +44 (0) 20 7637 0419
----------------------------------------------------------------------
Unsubscribe: Secunia Security Advisories
----------------------------------------------------------------------
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]