Oval Definition:	oval:org.mitre.oval:def:21067
Revision Date: 2014-02-17 Version: 53 Title: RHSA-2013:0815: httpd security update (Moderate) Description: mod_rewrite.c in the mod_rewrite module in the Apache HTTP Server 2.2.x before 2.2.25 writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to execute arbitrary commands via an HTTP request containing an escape sequence for a terminal emulator. Family: unix Class: patch Status: ACCEPTED Reference(s): CESA-2013:0815 CVE-2012-3499 CVE-2012-4558 CVE-2013-1862 RHSA-2013:0815-01 Platform(s): CentOS Linux 5 CentOS Linux 6 Red Hat Enterprise Linux 5 Red Hat Enterprise Linux 6 Product(s): httpd Definition Synopsis Redhat 6 section The operating system installed on the system is Red Hat Enterprise Linux 6 AND Packages section httpd-devel is earlier than 0:2.2.15-28.el6_4 OR httpd-tools is earlier than 0:2.2.15-28.el6_4 OR httpd-manual is earlier than 0:2.2.15-28.el6_4 OR mod_ssl is earlier than 1:2.2.15-28.el6_4 OR httpd is earlier than 0:2.2.15-28.el6_4 OR Centos 6 section The operating system installed on the system is CentOS Linux 6.x AND Packages section httpd-devel is earlier than 0:2.2.15-28.el6.centos OR httpd-tools is earlier than 0:2.2.15-28.el6.centos OR httpd-manual is earlier than 0:2.2.15-28.el6.centos OR mod_ssl is earlier than 1:2.2.15-28.el6.centos OR httpd is earlier than 0:2.2.15-28.el6.centos OR Redhat 5 section The operating system installed on the system is Red Hat Enterprise Linux 5 AND Packages section httpd-devel is earlier than 0:2.2.3-78.el5_9 OR mod_ssl is earlier than 1:2.2.3-78.el5_9 OR httpd-manual is earlier than 0:2.2.3-78.el5_9 OR httpd is earlier than 0:2.2.3-78.el5_9 OR Centos 5 section The operating system installed on the system is CentOS Linux 5.x AND Packages section httpd-devel is earlier than 0:2.2.3-78.el5.centos OR mod_ssl is earlier than 1:2.2.3-78.el5.centos OR httpd-manual is earlier than 0:2.2.3-78.el5.centos OR httpd is earlier than 0:2.2.3-78.el5.centos
BACK