Oval Definition:oval:org.mitre.oval:def:19191
Revision Date:2015-04-20Version:29
Title:HP-UX Running Apache, Remote Denial of Service (DoS), Local Increase of Privilege
Description:protocol.c in the Apache HTTP Server 2.2.x through 2.2.21 does not properly restrict header information during construction of Bad Request (aka 400) error documents, which allows remote attackers to obtain the values of HTTPOnly cookies via vectors involving a (1) long or (2) malformed header in conjunction with crafted web script.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2012-0053
Platform(s):HP-UX 11
Product(s):
Definition Synopsis
  • Criteria meets HP Security Bulletin HPSBUX02761
  • platforms
  • HP-UX B.11.23
  • OR HP-UX B.11.31
  • AND filesets tests
  • hpuxws22APCH32.APACHE version is less than B.2.2.15.12
  • OR hpuxws22APCH32.APACHE2 version is less than B.2.2.15.12
  • OR hpuxws22APCH32.AUTH_LDAP version is less than B.2.2.15.12
  • OR hpuxws22APCH32.AUTH_LDAP2 version is less than B.2.2.15.12
  • OR hpuxws22APCH32.MOD_JK version is less than B.2.2.15.12
  • OR hpuxws22APCH32.MOD_JK2 version is less than B.2.2.15.12
  • OR hpuxws22APCH32.MOD_PERL version is less than B.2.2.15.12
  • OR hpuxws22APCH32.MOD_PERL2 version is less than B.2.2.15.12
  • OR hpuxws22APCH32.PHP version is less than B.2.2.15.12
  • OR hpuxws22APCH32.PHP2 version is less than B.2.2.15.12
  • OR hpuxws22APCH32.WEBPROXY version is less than B.2.2.15.12
  • OR hpuxws22APCH32.WEBPROXY2 version is less than B.2.2.15.12
  • OR Criteria meets HP Security Bulletin HPSBUX02761
  • HP-UX B.11.11
  • AND filesets tests
  • hpuxwsAPACHE.APACHE version is less than B.2.0.64.03
  • OR hpuxwsAPACHE.APACHE2 version is less than B.2.0.64.03
  • OR hpuxwsAPACHE.AUTH_LDAP version is less than B.2.0.64.03
  • OR hpuxwsAPACHE.AUTH_LDAP2 version is less than B.2.0.64.03
  • OR hpuxwsAPACHE.MOD_JK version is less than B.2.0.64.03
  • OR hpuxwsAPACHE.MOD_JK2 version is less than B.2.0.64.03
  • OR hpuxwsAPACHE.MOD_PERL version is less than B.2.0.64.03
  • OR hpuxwsAPACHE.MOD_PERL2 version is less than B.2.0.64.03
  • OR hpuxwsAPACHE.PHP version is less than B.2.0.64.03
  • OR hpuxwsAPACHE.PHP2 version is less than B.2.0.64.03
  • OR hpuxwsAPACHE.WEBPROXY version is less than B.2.0.64.03
  • BACK