Oval Definition:oval:org.mitre.oval:def:19747
Revision Date:2015-04-20Version:28
Title:HP-UX Apache Web Server, Remote Execution of Arbitrary Code, Denial of Service (DoS)
Description:mod_dav.c in the Apache HTTP Server before 2.2.25 does not properly determine whether DAV is enabled for a URI, which allows remote attackers to cause a denial of service (segmentation fault) via a MERGE request in which the URI is configured for handling by the mod_dav_svn module, but a certain href attribute in XML data refers to a non-DAV URI.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2013-1896
Platform(s):HP-UX 11
Product(s):
Definition Synopsis
  • Criteria meets HP Security Bulletin HPSBUX02927
  • HP-UX B.11.23
  • AND filesets tests
  • hpuxws22APCH32.APACHE version is less than B.2.2.15.16
  • OR hpuxws22APCH32.APACHE2 version is less than B.2.2.15.16
  • OR hpuxws22APCH32.AUTH_LDAP version is less than B.2.2.15.16
  • OR hpuxws22APCH32.AUTH_LDAP2 version is less than B.2.2.15.16
  • OR hpuxws22APCH32.MOD_JK version is less than B.2.2.15.16
  • OR hpuxws22APCH32.MOD_JK2 version is less than B.2.2.15.16
  • OR hpuxws22APCH32.MOD_PERL version is less than B.2.2.15.16
  • OR hpuxws22APCH32.MOD_PERL2 version is less than B.2.2.15.16
  • OR hpuxws22APCH32.PHP version is less than B.2.2.15.16
  • OR hpuxws22APCH32.PHP2 version is less than B.2.2.15.16
  • OR hpuxws22APCH32.WEBPROXY version is less than B.2.2.15.16
  • OR hpuxws22APCH32.WEBPROXY2 version is less than B.2.2.15.16
  • OR hpuxws22APACHE.APACHE version is less than B.2.2.15.16
  • OR hpuxws22APACHE.APACHE2 version is less than B.2.2.15.16
  • OR hpuxws22APACHE.AUTH_LDAP version is less than B.2.2.15.16
  • OR hpuxws22APACHE.AUTH_LDAP2 version is less than B.2.2.15.16
  • OR hpuxws22APACHE.MOD_JK version is less than B.2.2.15.16
  • OR hpuxws22APACHE.MOD_JK2 version is less than B.2.2.15.16
  • OR hpuxws22APACHE.MOD_PERL version is less than B.2.2.15.16
  • OR hpuxws22APACHE.MOD_PERL2 version is less than B.2.2.15.16
  • OR hpuxws22APACHE.PHP version is less than B.2.2.15.16
  • OR hpuxws22APACHE.PHP2 version is less than B.2.2.15.16
  • OR hpuxws22APACHE.WEBPROXY version is less than B.2.2.15.16
  • OR hpuxws22APACHE.WEBPROXY2 version is less than B.2.2.15.16
  • OR Criteria meets HP Security Bulletin HPSBUX02927
  • HP-UX B.11.31
  • AND filesets tests
  • hpuxws22APCH32.APACHE version is less than B.2.2.15.16
  • OR hpuxws22APCH32.APACHE2 version is less than B.2.2.15.16
  • OR hpuxws22APCH32.AUTH_LDAP version is less than B.2.2.15.16
  • OR hpuxws22APCH32.AUTH_LDAP2 version is less than B.2.2.15.16
  • OR hpuxws22APCH32.MOD_JK version is less than B.2.2.15.16
  • OR hpuxws22APCH32.MOD_JK2 version is less than B.2.2.15.16
  • OR hpuxws22APCH32.MOD_PERL version is less than B.2.2.15.16
  • OR hpuxws22APCH32.MOD_PERL2 version is less than B.2.2.15.16
  • OR hpuxws22APCH32.PHP version is less than B.2.2.15.16
  • OR hpuxws22APCH32.PHP2 version is less than B.2.2.15.16
  • OR hpuxws22APCH32.WEBPROXY version is less than B.2.2.15.16
  • OR hpuxws22APCH32.WEBPROXY2 version is less than B.2.2.15.16
  • OR hpuxws22APACHE.APACHE version is less than B.2.2.15.16
  • OR hpuxws22APACHE.APACHE2 version is less than B.2.2.15.16
  • OR hpuxws22APACHE.AUTH_LDAP version is less than B.2.2.15.16
  • OR hpuxws22APACHE.AUTH_LDAP2 version is less than B.2.2.15.16
  • OR hpuxws22APACHE.MOD_JK version is less than B.2.2.15.16
  • OR hpuxws22APACHE.MOD_JK2 version is less than B.2.2.15.16
  • OR hpuxws22APACHE.MOD_PERL version is less than B.2.2.15.16
  • OR hpuxws22APACHE.MOD_PERL2 version is less than B.2.2.15.16
  • OR hpuxws22APACHE.PHP version is less than B.2.2.15.16
  • OR hpuxws22APACHE.PHP2 version is less than B.2.2.15.16
  • OR hpuxws22APACHE.WEBPROXY version is less than B.2.2.15.16
  • OR hpuxws22APACHE.WEBPROXY2 version is less than B.2.2.15.16
    • BACK