Oval Definition:	oval:org.mitre.oval:tst:31655
Comment: httpd-manual is earlier than 0:2.0.52-12.2.ent Type: rpminfo_test Namespace: linux Check_Existence: at_least_one_exists Check: at least one State Operator: AND References Object: oval:org.mitre.oval:obj:14457 State: oval:org.mitre.oval:ste:10037 Referencing Definitions Definition ID Class Title Last Modified oval:org.mitre.oval:def:10017 V The byte-range filter in Apache 2.0 before 2.0.54 allows remote attackers to cause a denial of service (memory consumption) via an HTTP header with a large Range field. 2013-04-29 oval:org.mitre.oval:def:10416 V ssl_engine_kernel.c in mod_ssl before 2.8.24, when using "SSLVerifyClient optional" in the global virtual host configuration, does not properly enforce "SSLVerifyClient require" in a per-location context, which allows remote attackers to bypass intended access restrictions. 2013-04-29
BACK