Security
Showing results for 
Search instead for 
Do you mean 

Vulnerability CVE-2011-3192 not fixed in HP-UX Apache-based Web Server v.2.2.15.13 ???

Highlighted
Occasional Contributor

Vulnerability CVE-2011-3192 not fixed in HP-UX Apache-based Web Server v.2.2.15.13 ???

Hi All ,

 

We have a problem with HP-UX Apache-based Web Server v.2.2.15.13 , it running with HP-UX Web Server Suite v.3.24 for HP SMH . IT Showing vulnerability  in TCP port 80 & 2301 [CVE-2011-3192] Dos ..

 

 

Please help,  anybody having Idea about to stop this vulnerability or how to apply patches available in Apache Site ..

 

http://wiki.apache.org/httpd/CVE-2011-3192

 

  http://www.apache.org/dist/httpd/patches/apply_to_2.2.14/

1 REPLIES
Honored Contributor Honored Contributor

Re: Vulnerability CVE-2011-3192 not fixed in HP-UX Apache-based Web Server v.2.2.15.13 ???

HP tend to apply patches to Apache versions in a slightly different way to the straight Apache code - generally for any given CVE, go to http://software.hp.com and search on the CVE reference number there... I did this, and it turns out CVE-2011-3192 is fixed in HP-UX Web Server Suite v.3.24 :

 

https://h20392.www2.hp.com/portal/swdepot/displayProductInfo.do?productNumber=HPUXWSATW324

 

Look down the list of fixed vulnerabilities...


HTH

Duncan