Oval Definition:oval:org.mitre.oval:def:19312
Revision Date:2015-04-20Version:29
Title:HP-UX Running Apache, Remote Denial of Service (DoS), Execution of Arbitrary Code and other vulnerabilities
Description:Multiple cross-site scripting (XSS) vulnerabilities in the Apache HTTP Server 2.2.x before 2.2.24-dev and 2.4.x before 2.4.4 allow remote attackers to inject arbitrary web script or HTML via vectors involving hostnames and URIs in the (1) mod_imagemap, (2) mod_info, (3) mod_ldap, (4) mod_proxy_ftp, and (5) mod_status modules.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2012-3499
Platform(s):HP-UX 11
Product(s):
Definition Synopsis
  • Criteria meets HP Security Bulletin HPSBUX02866
  • platforms
  • HP-UX B.11.23
  • OR HP-UX B.11.31
  • AND filesets tests
  • hpuxws22APCH32.APACHE version is less than B.2.2.15.15
  • OR hpuxws22APCH32.APACHE2 version is less than B.2.2.15.15
  • OR hpuxws22APCH32.AUTH_LDAP version is less than B.2.2.15.15
  • OR hpuxws22APCH32.AUTH_LDAP2 version is less than B.2.2.15.15
  • OR hpuxws22APCH32.MOD_JK version is less than B.2.2.15.15
  • OR hpuxws22APCH32.MOD_JK2 version is less than B.2.2.15.15
  • OR hpuxws22APCH32.MOD_PERL version is less than B.2.2.15.15
  • OR hpuxws22APCH32.MOD_PERL2 version is less than B.2.2.15.15
  • OR hpuxws22APCH32.PHP version is less than B.2.2.15.15
  • OR hpuxws22APCH32.PHP2 version is less than B.2.2.15.15
  • OR hpuxws22APCH32.WEBPROXY version is less than B.2.2.15.15
  • OR hpuxws22APCH32.WEBPROXY2 version is less than B.2.2.15.15
  • OR Criteria meets HP Security Bulletin HPSBUX02866
  • HP-UX B.11.31
  • OR hpuxws22TOMCAT.TOMCAT version is less than C.6.0.36.01
  • OR hpuxws22TOMCAT.TOMCAT version is less than D.7.0.35.01
    • BACK