Oval Definition:	oval:org.mitre.oval:tst:34461
Comment: mod_ssl is earlier than 1:2.0.52-32.2.ent Type: rpminfo_test Namespace: linux Check_Existence: at_least_one_exists Check: at least one State Operator: AND References Object: oval:org.mitre.oval:obj:14422 State: oval:org.mitre.oval:ste:10411 Referencing Definitions Definition ID Class Title Last Modified oval:org.mitre.oval:def:9824 V cache_util.c in the mod_cache module in Apache HTTP Server (httpd), when caching is enabled and a threaded Multi-Processing Module (MPM) is used, allows remote attackers to cause a denial of service (child processing handler crash) via a request with the (1) s-maxage, (2) max-age, (3) min-fresh, or (4) max-stale Cache-Control headers without a value. 2013-04-29 oval:org.mitre.oval:def:10154 V Cross-site scripting (XSS) vulnerability in mod_status.c in the mod_status module in Apache HTTP Server (httpd), when ExtendedStatus is enabled and a public server-status page is used, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors involving charsets with browsers that perform "charset detection" when the content-type is not specified. 2013-04-29
BACK