Operating System - HP-UX
1748056 Members
4991 Online
108758 Solutions
New Discussion

Re: Vulnerability CVE-2011-3192 not fixed in HP-UX Apache-based Web Server v.2.2.15.13 ???

 
Anoop.S.K
Occasional Contributor

Vulnerability CVE-2011-3192 not fixed in HP-UX Apache-based Web Server v.2.2.15.13 ???

Hi All ,

 

We have a problem with HP-UX Apache-based Web Server v.2.2.15.13 , it running with HP-UX Web Server Suite v.3.24 for HP SMH . IT Showing vulnerability  in TCP port 80 & 2301 [CVE-2011-3192] Dos ..

 

 

Please help,  anybody having Idea about to stop this vulnerability or how to apply patches available in Apache Site ..

 

http://wiki.apache.org/httpd/CVE-2011-3192

 

  http://www.apache.org/dist/httpd/patches/apply_to_2.2.14/

1 REPLY 1

Re: Vulnerability CVE-2011-3192 not fixed in HP-UX Apache-based Web Server v.2.2.15.13 ???

HP tend to apply patches to Apache versions in a slightly different way to the straight Apache code - generally for any given CVE, go to http://software.hp.com and search on the CVE reference number there... I did this, and it turns out CVE-2011-3192 is fixed in HP-UX Web Server Suite v.3.24 :

 

https://h20392.www2.hp.com/portal/swdepot/displayProductInfo.do?productNumber=HPUXWSATW324

 

Look down the list of fixed vulnerabilities...


I am an HPE Employee
Accept or Kudo