HP-UX Update For Apache Web Server Suite HPSBUX02401 Network Vulnerability

Impact

Remote Denial of Service (DoS) cross-site scripting (XSS) execution of arbitrary code cross-site request forgery (CSRF)

Solution

Please Install the Updated Packages.

Insight

Potential security vulnerabilities have been identified with HP-UX running Apache-based Web Server or Tomcat-based Servelet Engine. The vulnerabilities could be exploited remotely to cause a Denial of Service (DoS), cross-site scripting (XSS), execution of arbitrary code, or cross-site request forgery (CSRF). Apache-based Web Server and Tomcat-based Servelet Engine are contained in the Apache Web Server Suite.

Affected

Apache Web Server Suite on HP-UX B.11.23 and B.11.31 running Apache-based Web Server v2.2.8.01.01 or v2.0.59.07.02 or earlier or Tomcat-based Servelet Engine v5.5.27.01 or earlier HP-UX B.11.11 running Apache-based Web Server v2.0.59.07.02 or earlier or Tomcat-based Servelet Engine v5.5.27.01 or earlier

References

http://www11.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c01650939-4

Updated on 2015-03-25

Severity

Classification

CVE CVE-2007-6420, CVE-2008-1232, CVE-2008-1947, CVE-2008-2364, CVE-2008-2370, CVE-2008-2938, CVE-2008-2939, CVE-2008-3658

CVSS	Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

HP-UX Update for Apache Web Server Suite HPSBUX02401

Take action and discover your vulnerabilities