Apache HTTP Server 'mod_proxy' Reverse Proxy Information Disclosure Vulnerability Network Vulnerability

Summary

Apache HTTP Server is prone to an information disclosure vulnerability. An attacker can exploit this vulnerability to gain access to sensitive information.

Solution

The vendor released an update. Please see the references for details.

References

http://httpd.apache.org/
http://seclists.org/fulldisclosure/2011/Oct/232
http://www.securityfocus.com/bid/49957

Updated on 2015-03-25

Severity

Classification

CVE CVE-2011-3368, CVE-2011-4317

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

Apache HTTP Server Multiple Remote Denial of Service Vulnerabilities
Lighttpd Trailing Slash Information Disclosure Vulnerability
IBM WebSphere Application Server JSF Application Information Disclosure Vulnerability
Apache Tomcat 'Transfer-Encoding' Information Disclosure and Denial Of Service Vulnerabilities
IBM WebSphere Application Server Multiple CSRF Vulnerabilities

Take action and discover your vulnerabilities