Oval Definition:	oval:org.mitre.oval:def:26966
Revision Date: 2014-12-15 Version: 20 Title: HP-UX Apache Server Suite running Apache Tomcat or PHP, Remote Denial of Service (DoS) and Other Vulnerabilities Description: acinclude.m4, as used in the configure script in PHP 5.5.13 and earlier, allows local users to overwrite arbitrary files via a symlink attack on the /tmp/phpglibccheck file. Family: unix Class: vulnerability Status: ACCEPTED Reference(s): CVE-2014-3981 Platform(s): HP-UX 11 Product(s): Definition Synopsis HP-UX B.11.23 AND filesets test hpuxws22APCH32.APACHE version is less than B.2.2.15.21 OR hpuxws22APCH32.APACHE2 version is less than B.2.2.15.21 OR hpuxws22APCH32.AUTH_LDAP version is less than B.2.2.15.21 OR hpuxws22APCH32.AUTH_LDAP2 version is less than B.2.2.15.21 OR hpuxws22APCH32.MOD_JK version is less than B.2.2.15.21 OR hpuxws22APCH32.MOD_JK2 version is less than B.2.2.15.21 OR hpuxws22APCH32.MOD_PERL version is less than B.2.2.15.21 OR hpuxws22APCH32.MOD_PERL2 version is less than B.2.2.15.21 OR hpuxws22APCH32.PHP version is less than B.2.2.15.21 OR hpuxws22APCH32.PHP2 version is less than B.2.2.15.21 OR hpuxws22APCH32.WEBPROXY version is less than B.2.2.15.21 OR hpuxws22APCH32.WEBPROXY2 version is less than B.2.2.15.21 OR hpuxws22APACHE.APACHE version is less than B.2.2.15.21 OR hpuxws22APACHE.APACHE2 version is less than B.2.2.15.21 OR hpuxws22APACHE.AUTH_LDAP version is less than B.2.2.15.21 OR hpuxws22APACHE.AUTH_LDAP2 version is less than B.2.2.15.21 OR hpuxws22APACHE.MOD_JK version is less than B.2.2.15.21 OR hpuxws22APACHE.MOD_JK2 version is less than B.2.2.15.21 OR hpuxws22APACHE.MOD_PERL version is less than B.2.2.15.21 OR hpuxws22APACHE.MOD_PERL2 version is less than B.2.2.15.21 OR hpuxws22APACHE.PHP version is less than B.2.2.15.21 OR hpuxws22APACHE.PHP2 version is less than B.2.2.15.21 OR hpuxws22APACHE.WEBPROXY version is less than B.2.2.15.21 OR hpuxws22APACHE.WEBPROXY2 version is less than B.2.2.15.21 OR hpuxws22TOMCAT.TOMCAT version is less than B.2.2.15.21
BACK